CVE-2022-49791 Information

Description

In the Linux kernel the following vulnerability has been resolved:

io_uring: fix multishot accept request leaks

Having REQ_F_POLLED set doesn’t guarantee that the request is executed as a multishot from the polling path. Fortunately for us if the code thinks it’s multishot issue when it’s not it can only ask to skip completion so leaking the request. Use issue_flags to mark multipoll issues.

Reference

https://git.kernel.org/stable/c/0e4626de856ef8f25ecd9c716e76d4f95ce95639 https://git.kernel.org/stable/c/91482864768a874c4290ef93b84a78f4f1dac51b