[PATCH 5.0 08/89] cifs: fix memory leak in SMB2_read

From: Greg Kroah-Hartman
Date: Tue Apr 30 2019 - 07:48:30 EST

Next message: Greg Kroah-Hartman: "[PATCH 5.0 09/89] cifs: fix page reference leak with readv/writev"
Previous message: Greg Kroah-Hartman: "[PATCH 5.0 06/89] fs/proc/proc_sysctl.c: Fix a NULL pointer dereference"
In reply to: Greg Kroah-Hartman: "[PATCH 5.0 06/89] fs/proc/proc_sysctl.c: Fix a NULL pointer dereference"
Next in thread: Greg Kroah-Hartman: "[PATCH 5.0 09/89] cifs: fix page reference leak with readv/writev"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ Upstream commit 05fd5c2c61732152a6bddc318aae62d7e436629b ]

Commit 088aaf17aa79300cab14dbee2569c58cfafd7d6e introduced a leak where
if SMB2_read() returned an error we would return without freeing the
request buffer.

Cc: Stable <stable@xxxxxxxxxxxxxxx>
Signed-off-by: Ronnie Sahlberg <lsahlber@xxxxxxxxxx>
Reviewed-by: Pavel Shilovsky <pshilov@xxxxxxxxxxxxx>
Signed-off-by: Steve French <stfrench@xxxxxxxxxxxxx>
Signed-off-by: Sasha Levin <sashal@xxxxxxxxxx>
---
fs/cifs/smb2pdu.c | 1 +
1 file changed, 1 insertion(+)

diff --git a/fs/cifs/smb2pdu.c b/fs/cifs/smb2pdu.c
index 938e75cc3b66..85a3c051e622 100644
--- a/fs/cifs/smb2pdu.c
+++ b/fs/cifs/smb2pdu.c
@@ -3402,6 +3402,7 @@ SMB2_read(const unsigned int xid, struct cifs_io_parms *io_parms,
rc);
}
free_rsp_buf(resp_buftype, rsp_iov.iov_base);
+ cifs_small_buf_release(req);
return rc == -ENODATA ? 0 : rc;
} else
trace_smb3_read_done(xid, req->PersistentFileId,
--
2.19.1

Next message: Greg Kroah-Hartman: "[PATCH 5.0 09/89] cifs: fix page reference leak with readv/writev"
Previous message: Greg Kroah-Hartman: "[PATCH 5.0 06/89] fs/proc/proc_sysctl.c: Fix a NULL pointer dereference"
In reply to: Greg Kroah-Hartman: "[PATCH 5.0 06/89] fs/proc/proc_sysctl.c: Fix a NULL pointer dereference"
Next in thread: Greg Kroah-Hartman: "[PATCH 5.0 09/89] cifs: fix page reference leak with readv/writev"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]