Bug 1212505 (CVE-2023-35826)

Summary: VUL-0: CVE-2023-35826: kernel-source-rt,kernel-source-azure,kernel-source: Use-after-free was found in cedrus_remove in drivers/staging/media/sunxi/cedrus/cedrus.c
Product: [Novell Products] SUSE Security Incidents Reporter: Cathy Hu <cathy.hu>
Component: IncidentsAssignee: Security Team bot <security-team>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Normal    
Priority: P3 - Medium CC: jlee, mhocko, security-team, tiwai
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://smash.suse.de/issue/369823/
Whiteboard:
Found By: Security Response Team Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Comment 1 Cathy Hu 2023-06-19 10:00:07 UTC 
Fixing commit: https://github.com/torvalds/linux/commit/50d0a7aea4809cef87979d4669911276aa23b71f

Commit introducing the issue: https://github.com/torvalds/linux/commit/7c38a551bda1b7adea7e98e5c6786f5bee7100b8

Both are in stable only, closing done
Comment 2 Takashi Iwai 2023-06-19 10:27:17 UTC 
We need to track also for ALP, too...
Comment 6 Cathy Hu 2023-06-19 14:12:45 UTC 
reopening to wait for the updated patch reference
Comment 7 Joey Lee 2023-06-21 05:55:41 UTC 
(In reply to Hu from comment #6)
> reopening to wait for the updated patch reference

update status:

ALP-current [sent, update references tag]
Comment 8 Michal Hocko 2023-07-07 13:28:57 UTC 
(In reply to Hu from comment #6)
> reopening to wait for the updated patch reference

The driver (staging/cedrus) is unsupported so I guess we can just go ahead and close it.
Comment 9 Joey Lee 2023-07-12 09:03:50 UTC 
(In reply to Joey Lee from comment #7)
> (In reply to Hu from comment #6)
> > reopening to wait for the updated patch reference
> 
> update status:
> 
> ALP-current [sent, update references tag]

merged. reset assigner.
Comment 10 Cathy Hu 2023-09-25 12:15:58 UTC 
done, closing