aio: Fix null ptr deref in aio_complete() wakeup

Linux kernel 安全漏洞

aio: 在aio_complete()唤醒修复null ptr deref错误

In the Linux kernel, the following vulnerability has been resolved: aio: Fix null ptr deref in aio_complete() wakeup list_del_init_careful() needs to be the last access to the wait queue entry - it effectively unlocks access. Previously, finish_wait() would see the empty list head and skip taking the lock, and then we'd return - but the completion path would still attempt to do the wakeup after the task_struct pointer had been overwritten.

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞。目前尚无此漏洞的相关信息，请随时关注CNNVD或厂商公告。

在Linux内核中，已解决以下漏洞： aio: 在aio_complete()中修复NULL指针解引用的唤醒问题 list_del_init_careful()需要是wait队列入口的最后一次访问-它有效地解锁了访问。 此前，finish_wait()会看到空的队列头并跳过锁定，然后我们返回，但完成路径仍然尝试在任务结构指针被篡改后进行唤醒。