Re: [PATCH 1/2] nfc: llcp: Fix use-after-free in llcp_sock_release()

Next message: Billy Tsai: "[PATCH v9 0/3] pinctrl: aspeed: Add AST2700 SoC0 support"
Previous message: Bartosz Golaszewski: "Re: [PATCH v2 0/2] gpio: 74x164: seed the chain from DT at probe time"
In reply to: Jakub Kicinski: "Re: [PATCH 1/2] nfc: llcp: Fix use-after-free in llcp_sock_release()"
Next in thread: David Heidelberg: "Re: [PATCH 1/2] nfc: llcp: Fix use-after-free in llcp_sock_release()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Lee Jones

Date: Wed May 06 2026 - 04:12:22 EST

On Fri, 01 May 2026, Jakub Kicinski wrote:

> On Wed, 29 Apr 2026 13:40:41 +0000 Lee Jones wrote:
> > llcp_sock_release() unconditionally unlinks the socket from the local
> > sockets list. However, if the socket is still in connecting state, it
> > is on the connecting list.
> >
> > Fix this by checking the socket state and unlinking from the correct list.
> >
> > Fixes: b4011239a08e ("NFC: llcp: Fix non blocking sockets connections")
> > Signed-off-by: Lee Jones <lee@xxxxxxxxxx>
>
> Adding David H and dropping from netdev's patchwork..

Is anyone looking at these please?

These are pretty important.

--
Lee Jones