Piteball/android_kernel_samsung_msm8976
1
1
Fork 0
mirror of https://github.com/team-infusion-developers/android_kernel_samsung_msm8976.git synced 2024-09-21 20:04:01 +00:00
Code Issues Projects Releases Wiki Activity
android_kernel_samsung_msm8976/drivers
History
Doron Tsur cef1bb63fd IB/cm: Fix rb-tree duplicate free and use-after-free 
commit 0ca81a2840f77855bbad1b9f172c545c4dc9e6a4 upstream.

ib_send_cm_sidr_rep could sometimes erase the node from the sidr
(depending on errors in the process). Since ib_send_cm_sidr_rep is
called both from cm_sidr_req_handler and cm_destroy_id, cm_id_priv
could be either erased from the rb_tree twice or not erased at all.
Fixing that by making sure it's erased only once before freeing
cm_id_priv.

Fixes: a977049dac ('[PATCH] IB: Add the kernel CM implementation')
Signed-off-by: Doron Tsur <doront@mellanox.com>
Signed-off-by: Matan Barak <matanb@mellanox.com>
Signed-off-by: Doug Ledford <dledford@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2015-11-09 10:12:59 -08:00
..
accessibility
acpi ACPICA: Tables: Fix an issue that FACS initialization is performed twice 2015-08-03 09:29:46 -07:00
amba
ata ata: pmp: add quirk for Marvell 4140 SATA PMP 2015-08-10 12:20:31 -07:00
atm
auxdisplay auxdisplay: ks0108: fix refcount 2015-09-21 10:00:09 -07:00
base regmap: debugfs: Don't bother actually printing when calculating max length 2015-10-22 14:37:51 -07:00
bcma
block xen-blkfront: check for null drvdata in blkback_changed (XenbusStateClosing) 2015-11-09 10:12:58 -08:00
bluetooth Bluetooth: btusb: Fix memory leak in Intel setup routine 2015-08-03 09:29:42 -07:00
bus bus: mvebu: pass the coherency availability information at init time 2015-07-03 19:48:09 -07:00
cdrom
char ipmi: fix timeout calculation when bmc is disconnected 2015-08-16 20:51:37 -07:00
clk clk: versatile: off by one in clk_sp810_timerclken_of_get() 2015-09-21 10:00:07 -07:00
clocksource clocksource: exynos_mct: Fix bitmask regression for exynos4_mct_write 2015-01-29 17:40:56 -08:00
connector net: Use netlink_ns_capable to verify the permisions of netlink messages 2014-06-26 15:12:37 -04:00
cpufreq cpufreq: speedstep-smi: enable interrupts when waiting 2015-03-06 14:40:48 -08:00
cpuidle cpuidle / menu: Return (-1) if there are no suitable states 2015-08-03 09:29:41 -07:00
crypto crypto: caam - fix memory corruption in ahash_final_ctx 2015-09-13 09:07:59 -07:00
dca
devfreq
dio
dma dmaengine: mv_xor: bug fix for racing condition in descriptors cleanup 2015-08-03 09:29:46 -07:00
edac EDAC, ppc4xx: Access mci->csrows array elements properly 2015-09-13 09:07:59 -07:00
eisa
extcon extcon: max77693: Fix two NULL pointer exceptions on missing pdata 2014-07-06 18:54:15 -07:00
firewire firewire: cdev: prevent kernel stack leaking into ioctl arguments 2014-11-21 09:22:53 -08:00
firmware efi-pstore: Make efi-pstore return a unique id 2015-02-05 22:35:40 -08:00
gpio gpio: sysfs: fix memory leaks and device hotplug 2015-05-17 09:51:32 -07:00
gpu drm/nouveau/gem: return only valid domain when there's only one 2015-11-09 10:12:58 -08:00
hid HID: usbhid: Fix the check for HID_RESET_PENDING in hid_io_error 2015-09-21 10:00:08 -07:00
hsi
hv Drivers: hv: vmbus: Don't wait after requesting offers 2015-05-13 05:15:43 -07:00
hwmon hwmon: (mcp3021) Fix broken output scaling 2015-08-03 09:29:46 -07:00
hwspinlock
i2c i2c: rcar: enable RuntimePM before registering to the core 2015-10-27 09:44:50 +09:00
ide
idle
iio Revert "iio: bmg160: IIO_BUFFER and IIO_TRIGGERED_BUFFER are required" 2015-10-01 12:07:39 +02:00
infiniband IB/cm: Fix rb-tree duplicate free and use-after-free 2015-11-09 10:12:59 -08:00
input Input: usbtouchscreen - avoid unresponsive TSC-30 touch screen 2015-08-10 12:20:30 -07:00
iommu iommu/amd: Don't clear DTE flags when modifying it 2015-11-09 10:12:58 -08:00
ipack
irqchip irqchip: gic: Fix core ID calculation when topology is read from DT 2014-07-28 08:00:06 -07:00
isdn isdn/gigaset: reset tty->receive_room when attaching ser_gigaset 2015-10-01 12:07:36 +02:00
leds leds: leds-pwm: properly clean up after probe failure 2014-06-07 13:25:34 -07:00
lguest lguest: fix out-by-one error in address checking. 2015-06-05 23:19:54 -07:00
macintosh windfarm: decrement client count when unregistering 2015-10-22 14:37:49 -07:00
mailbox
md md/raid10: submit_bio_wait() returns 0 on success 2015-11-09 10:12:59 -08:00
media rc-core: fix remove uevent generation 2015-10-01 12:07:31 +02:00
memory
memstick memstick: mspro_block: add missing curly braces 2015-05-06 21:56:28 +02:00
message mptfusion: enable no_write_same for vmware scsi disks 2014-10-30 09:35:10 -07:00
mfd mfd: sm501: dbg_regs attribute must be read-only 2015-08-16 20:51:37 -07:00
misc mei: bus: fix possible boundaries violation 2014-11-21 09:22:55 -08:00
mmc mmc: core: fix race condition in mmc_wait_data_done 2015-10-01 12:07:32 +02:00
mtd UBI: return ENOSPC if no enough space available 2015-10-22 14:37:52 -07:00
net iwlwifi: mvm: fix D3 firmware PN programming 2015-11-09 10:12:58 -08:00
nfc NFC: microread: Potential overflows in microread_target_discovered() 2014-10-05 14:54:12 -07:00
ntb
nubus
of of/address: Don't loop forever in of_find_matching_node_by_address(). 2015-09-21 10:00:09 -07:00
oprofile
parisc
parport drivers: parport: Kconfig: exclude arm64 for PARPORT_PC 2015-05-06 21:56:26 +02:00
pci PCI: Fix TI816X class code quirk 2015-09-21 10:00:07 -07:00
pcmcia Disable write buffering on Toshiba ToPIC95 2015-08-03 09:29:41 -07:00
pinctrl pinctrl: mvebu: armada-xp: fix functions of MPP48 2015-08-03 09:29:42 -07:00
platform hp_accel: Add support for HP ZBook 15 2015-01-27 07:52:31 -08:00
pnp
power power_supply: lp8788-charger: Fix leaked power supply on probe fail 2015-05-06 21:56:21 +02:00
pps
ps3
ptp
pwm
rapidio rapidio/tsi721_dma: fix failure to obtain transaction descriptor 2014-08-07 14:30:25 -07:00
regulator regulator: core: fix constraints output buffer 2015-08-03 09:29:41 -07:00
remoteproc
reset
rpmsg
rtc rtc: rtc-at91rm9200: fix infinite wait for ACKUPD irq 2014-06-26 15:12:37 -04:00
s390 crypto: prefix module autoloading with "crypto-" 2015-01-29 17:40:57 -08:00
sbus bbc-i2c: Fix BBC I2C envctrl on SunBlade 2000 2014-08-14 09:24:16 +08:00
scsi mvsas: Fix NULL pointer dereference in mvs_slot_task_free 2015-11-09 10:12:59 -08:00
sfi
sh
sn
spi spi: spi-pxa2xx: Check status register to determine if SSSR_TINT is disabled 2015-10-22 14:37:50 -07:00
ssb
ssbi
staging staging: speakup: fix speakup-r regression 2015-10-22 14:37:53 -07:00
target iscsi-target: Fix iscsit_start_kthreads failure OOPs 2015-08-16 20:51:39 -07:00
tc
thermal
tty serial: 8250: don't bind to SMSC IrCC IR port 2015-09-21 10:00:08 -07:00
uio
usb xhci: handle no ping response error properly 2015-11-09 10:12:58 -08:00
uwb
vfio vfio-pci: Fix the check on pci device type in vfio_pci_probe() 2015-01-27 07:52:32 -08:00
vhost vhost/scsi: potential memory corruption 2015-10-01 12:07:34 +02:00
video video: vgacon: Don't build on arm64 2015-05-06 21:56:25 +02:00
virt
virtio virtio_pci: fix virtio spec compliance on restore 2014-11-14 08:47:55 -08:00
vlynq
vme
w1
watchdog watchdog: omap: assert the counter being stopped before reprogramming 2015-08-03 09:29:47 -07:00
xen xen/gntdev: convert priv->lock to a mutex 2015-10-01 12:07:33 +02:00
zorro
Kconfig
Makefile