Headline
CVE-2018-7480: blkcg: fix double free of new_blkg in blkcg_init_queue · torvalds/linux@9b54d81
The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure.
Permalink
Browse files
blkcg: fix double free of new_blkg in blkcg_init_queue
If blkg_create fails, new_blkg passed as an argument will be freed by blkg_create, so there is no need to free it again.
Signed-off-by: Hou Tao [email protected] Signed-off-by: Jens Axboe [email protected]
- Loading branch information