CVE-2022-49056 Information

Description

In the Linux kernel the following vulnerability has been resolved:

io_uring: abort file assignment prior to assigning creds

We need to either restore creds properly if we fail on the file assignment or just do the file assignment first instead. Let’s do the latter as it’s simpler should make no difference here for file assignment.

Reference

https://git.kernel.org/stable/c/262960775e0d2cdf97a3e33993e95e13175df4bb https://git.kernel.org/stable/c/701521403cfb228536b3947035c8a6eca40d8e58