raspi/linux
1
0
Fork 1
mirror of https://github.com/raspberrypi/linux.git synced 2025-12-06 01:49:46 +00:00
Code Issues Projects Releases Wiki Activity
Files
f62973e0767e4fcd6799087787fca08ca2a85b8c
linux/fs
History
Joshua Rogers 35521b5a7e ksmbd: close accepted socket when per-IP limit rejects connection 
commit 98a5fd31cb upstream.

When the per-IP connection limit is exceeded in ksmbd_kthread_fn(),
the code sets ret = -EAGAIN and continues the accept loop without
closing the just-accepted socket. That leaks one socket per rejected
attempt from a single IP and enables a trivial remote DoS.

Release client_sk before continuing.

This bug was found with ZeroPath.

Cc: stable@vger.kernel.org
Signed-off-by: Joshua Rogers <linux@joshua.hu>
Acked-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2025-11-24 10:37:41 +01:00
..
9p
9p: sysfs_init: don't hardcode error to ENOMEM
2025-11-13 15:37:37 -05:00
adfs
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
affs
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
afs
afs: Fix dynamic lookup to fail on cell lookup failure
2025-11-24 10:37:37 +01:00
autofs
new helper: set_default_d_op()
2025-06-10 22:21:16 -04:00
bcachefs
Merge tag 'vfs-6.17-rc1.fileattr' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 15:24:14 -07:00
befs
bfs
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
btrfs
btrfs: ensure no dirty metadata is written back for an fs with errors
2025-11-13 15:37:40 -05:00
cachefiles
Merge tag 'vfs-6.17-rc1.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 11:22:56 -07:00
ceph
ceph: fix multifs mds auth caps issue
2025-11-13 15:37:39 -05:00
coda
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
configfs
configfs: use DCACHE_DONTCACHE
2025-06-11 13:41:05 -04:00
cramfs
cramfs: Verify inode mode when loading from disk
2025-10-19 16:37:44 +02:00
crypto
fscrypt: fix left shift underflow when inode->i_blkbits > PAGE_SHIFT
2025-11-13 15:37:45 -05:00
debugfs
debugfs: fix mount options not being applied
2025-08-17 12:22:25 +02:00
devpts
devpts, sunrpc, hostfs: don't bother with ->d_op
2025-06-11 13:40:04 -04:00
dlm
dlm: check for defined force value in dlm_lockspace_release
2025-10-29 14:10:16 +01:00
ecryptfs
Merge tag 'vfs-6.17-rc1.fileattr' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 15:24:14 -07:00
efivarfs
efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare
2025-08-28 08:39:49 +02:00
efs
erofs
erofs: avoid infinite loop due to incomplete zstd-compressed data
2025-11-24 10:37:27 +01:00
exfat
exfat: fix improper check of dentry.stream.valid_size
2025-11-24 10:37:26 +01:00
exportfs
exportfs: use lookup_one_unlocked()
2025-06-11 13:44:15 +02:00
ext2
Merge tag 'fs_for_v6.17-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs
2025-07-28 16:16:09 -07:00
ext4
ext4: increase IO priority of fastcommit
2025-11-13 15:37:31 -05:00
f2fs
f2fs: fix infinite loop in __insert_extent_tree()
2025-11-13 15:37:26 -05:00
fat
Merge tag 'mm-nonmm-stable-2025-08-03-12-47' of git://git.kernel.org/pub/scm/linux/kernel/git/akpm/mm
2025-08-03 16:23:09 -07:00
freevxfs
fuse
virtio-fs: fix incorrect check for fsvq->kobj
2025-11-24 10:37:37 +01:00
gfs2
gfs2: Fix unlikely race in gdlm_put_lock
2025-10-29 14:10:16 +01:00
hfs
hfs: fix KMSAN uninit-value issue in hfs_find_set_zero_bits()
2025-10-29 14:10:16 +01:00
hfsplus
hfsplus: return EIO when type of hidden directory mismatch in hfsplus_fill_super()
2025-10-29 14:10:16 +01:00
hostfs
hostfs: Fix only passing host root in boot stage with new mount
2025-11-24 10:37:37 +01:00
hpfs
fs/hpfs: Fix error code for new_inode() failure in mkdir/create/mknod/symlink
2025-11-13 15:37:36 -05:00
hugetlbfs
treewide: remove MIGRATEPAGE_SUCCESS
2025-10-29 14:10:32 +01:00
iomap
iomap: error out on file IO when there is no inline_data buffer
2025-10-19 16:37:44 +02:00
isofs
Merge tag 'pull-dcache' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2025-07-28 09:17:57 -07:00
jbd2
jbd2: ensure that all ongoing I/O complete before freeing blocks
2025-10-23 16:24:23 +02:00
jffs2
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
jfs
jfs: fix uninitialized waitqueue in transaction manager
2025-11-13 15:37:26 -05:00
kernfs
kernfs: Fix UAF in polling when open file is released
2025-09-06 20:11:27 +02:00
lockd
minix
minixfs: Verify inode mode when loading from disk
2025-10-19 16:37:43 +02:00
netfs
netfs: fix reference leak
2025-09-26 10:14:19 +02:00
nfs
NFS: Fix LTP test failures when timestamps are delegated
2025-11-24 10:37:35 +01:00
nfs_common
NFS/localio: nfs_uuid_put() fix the wake up after unlinking the file
2025-08-05 16:45:40 -07:00
nfsd
NFSD: free copynotify stateid in nfs4_free_ol_stateid()
2025-11-24 10:37:41 +01:00
nilfs2
nilfs2: fix CFI failure when accessing /sys/fs/nilfs2/features/*
2025-09-13 13:05:38 -07:00
nls
notify
fs/notify: call exportfs_encode_fid with s_umount
2025-10-29 14:10:20 +01:00
ntfs3
ntfs3: pretend $Extend records as regular files
2025-11-13 15:37:18 -05:00
ocfs2
ocfs2: clear extent cache after moving/defragmenting extents
2025-10-29 14:10:23 +01:00
omfs
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
openpromfs
orangefs
orangefs: fix xattr related buffer overflow...
2025-11-13 15:37:34 -05:00
overlayfs
ovl: make sure that ovl_create_real() returns a hashed dentry
2025-11-13 15:37:29 -05:00
proc
fs/proc/task_mmu: check p->vec_buf for NULL
2025-09-25 16:10:34 -07:00
pstore
pstore: switch to locked_recursive_removal()
2025-07-02 22:36:51 -04:00
qnx4
qnx6
quota
fs: quota: create dedicated workqueue for quota_release_work
2025-10-19 16:37:25 +02:00
ramfs
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
resctrl
fs/resctrl: Eliminate false positive lockdep warning when reading SNC counters
2025-09-09 12:43:36 +02:00
romfs
fs: replace mmap hook with .mmap_prepare for simple mappings
2025-06-19 13:56:59 +02:00
smb
ksmbd: close accepted socket when per-IP limit rejects connection
2025-11-24 10:37:41 +01:00
squashfs
Squashfs: reject negative file sizes in squashfs_read_inode()
2025-10-19 16:37:42 +02:00
sysfs
sysfs: check visibility before changing group attribute ownership
2025-10-29 14:10:27 +01:00
tests
tracefs
Merge tag 'pull-rpc_pipefs' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2025-07-28 09:56:09 -07:00
ubifs
Merge tag 'ubifs-for-linus-6.17-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/rw/ubifs
2025-07-31 10:08:44 -07:00
udf
fs: udf: fix OOB read in lengthAllocDescs handling
2025-10-15 12:04:16 +02:00
ufs
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
unicode
vboxsf
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
verity
fsverity: Switch from crypto_shash to SHA-2 library
2025-07-14 11:29:32 -07:00
xfs
xfs: fix various problems in xfs_atomic_write_cow_iomap_begin
2025-11-13 15:37:46 -05:00
zonefs
Merge tag 'zonefs-6.17-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/dlemoal/zonefs
2025-07-28 17:06:51 -07:00
aio.c
treewide: remove MIGRATEPAGE_SUCCESS
2025-10-29 14:10:32 +01:00
anon_inodes.c
module: Rename EXPORT_SYMBOL_GPL_FOR_MODULES to EXPORT_SYMBOL_FOR_MODULES
2025-08-11 16:16:36 +02:00
attr.c
vfs: add ATTR_CTIME_SET flag
2025-10-19 16:37:06 +02:00
backing-file.c
Merge tag 'vfs-6.17-rc1.mmap_prepare' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 13:43:25 -07:00
bad_inode.c
binfmt_elf_fdpic.c
Merge tag 'execve-v6.17' of git://git.kernel.org/pub/scm/linux/kernel/git/kees/linux
2025-07-28 17:11:40 -07:00
binfmt_elf.c
Merge tag 'execve-v6.17' of git://git.kernel.org/pub/scm/linux/kernel/git/kees/linux
2025-07-28 17:11:40 -07:00
binfmt_flat.c
binfmt_misc.c
binfmt_misc: restore write access before closing files opened by open_exec()
2025-11-24 10:37:37 +01:00
binfmt_script.c
bpf_fs_kfuncs.c
bpf: Introduce bpf_cgroup_read_xattr to read xattr of cgroup's node
2025-07-02 14:18:20 +02:00
buffer.c
fs/buffer: fix use-after-free when call bh_read() helper
2025-08-19 13:51:28 +02:00
char_dev.c
compat_binfmt_elf.c
coredump.c
coredump: fix core_pattern input validation
2025-10-23 16:24:27 +02:00
d_path.c
fold fs_struct->{lock,seq} into a seqlock
2025-07-08 10:25:19 +02:00
dax.c
dax: skip read lock assertion for read-only filesystems
2025-10-23 16:24:27 +02:00
dcache.c
vfs: Don't leak disconnected dentries on umount
2025-10-23 16:24:19 +02:00
direct-io.c
Merge tag 'mm-stable-2025-07-30-15-25' of git://git.kernel.org/pub/scm/linux/kernel/git/akpm/mm
2025-07-31 14:57:54 -07:00
drop_caches.c
eventfd.c
eventpoll.c
eventpoll: Replace rwlock with spinlock
2025-10-19 16:37:25 +02:00
exec.c
exec: Fix incorrect type for ret
2025-10-29 14:10:15 +01:00
fcntl.c
fhandle.c
fhandle: use more consistent rules for decoding file handle from userns
2025-08-29 09:48:31 +02:00
file_attr.c
fs: return EOPNOTSUPP from file_setattr/file_getattr syscalls
2025-11-24 10:37:24 +01:00
file_table.c
Merge tag 'fsnotify_for_v6.17-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs
2025-07-31 10:31:00 -07:00
file.c
fs: always return zero on success from replace_fd()
2025-10-19 16:36:59 +02:00
filesystems.c
fs_context.c
fs_parser.c
fs_pin.c
fs_struct.c
fold fs_struct->{lock,seq} into a seqlock
2025-07-08 10:25:19 +02:00
fs_types.c
fs-writeback.c
writeback: Avoid excessively long inode switching times
2025-10-19 16:37:44 +02:00
fsopen.c
fscontext: do not consume log entries when returning -EMSGSIZE
2025-10-19 16:36:59 +02:00
init.c
inode.c
vfs: Remove unnecessary list_for_each_entry_safe() from evict_inodes()
2025-07-10 09:37:32 +02:00
internal.h
Merge tag 'vfs-6.17-rc1.pidfs' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 14:10:15 -07:00
ioctl.c
fs: split fileattr related helpers into separate file
2025-07-01 22:44:22 +02:00
Kconfig
fs/Kconfig: enable HUGETLBFS only if ARCH_SUPPORTS_HUGETLBFS
2025-07-24 19:12:38 -07:00
Kconfig.binfmt
kernel_read_file.c
libfs.c
Merge tag 'vfs-6.17-rc1.pidfs' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 14:10:15 -07:00
locks.c
docs/vfs: update references to i_mutex to i_rwsem
2025-06-23 12:17:33 +02:00
Makefile
fs: split fileattr related helpers into separate file
2025-07-01 22:44:22 +02:00
mbcache.c
mnt_idmapping.c
mount.h
copy_tree(): don't link the mounts via mnt_list
2025-06-29 19:03:37 -04:00
mpage.c
namei.c
openat2: don't trigger automounts with RESOLVE_NO_XDEV
2025-10-19 16:37:28 +02:00
namespace.c
fs/namespace: correctly handle errors returned by grab_requested_mnt_ns
2025-11-24 10:37:37 +01:00
nsfs.c
nsfs: validate extensible ioctls
2025-10-19 16:37:44 +02:00
open.c
allow finish_no_open(file, ERR_PTR(-E...))
2025-11-13 15:37:25 -05:00
pidfs.c
pidfs: validate extensible ioctls
2025-10-19 16:37:44 +02:00
pipe.c
fs/pipe: set FMODE_NOWAIT in create_pipe_files()
2025-06-10 13:16:19 +02:00
pnode.c
change_mnt_propagation(): calculate propagation source only if we'll need it
2025-08-19 12:05:59 -04:00
pnode.h
get rid of CL_SHARE_TO_SLAVE
2025-06-29 19:03:46 -04:00
posix_acl.c
proc_namespace.c
read_write.c
copy_file_range: limit size if in compat mode
2025-10-19 16:37:43 +02:00
readdir.c
remap_range.c
select.c
fs: annotate suspected data race between poll_schedule_timeout() and pollwake()
2025-06-23 12:36:51 +02:00
seq_file.c
signalfd.c
splice.c
netfs: Fix unbuffered write error handling
2025-08-15 15:56:49 +02:00
stack.c
docs/vfs: update references to i_mutex to i_rwsem
2025-06-23 12:17:33 +02:00
stat.c
statfs.c
super.c
Merge tag 'vfs-6.17-rc1.super' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 15:50:15 -07:00
sync.c
sysctls.c
timerfd.c
userfaultfd.c
mm/mremap: use an explicit uffd failure path for mremap
2025-07-24 19:12:29 -07:00
utimes.c
xattr.c
Merge tag 'vfs-6.17-rc1.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2025-07-28 11:22:56 -07:00