Branch: refs/heads/master Home: https://github.com/openSUSE/wicked Commit: 8e28aa1dfe209b83e61ce1691c067c6bd7947dee https://github.com/openSUSE/wicked/commit/8e28aa1dfe209b83e61ce1691c067c6bd7... Author: Marius Tomaschewski <mt@suse.de> Date: 2023-01-24 (Tue, 24 Jan 2023) Changed paths: M nanny/policy.c Log Message: ----------- nanny: fix use-after-free in debug mode (bsc#1206447) Fix a use-after-free by getting a local mpolicy->fsm_policy reference in unregister_managed_policy to safely access the fsm policy name for a debug message logged after unregistering the mpolicy object, which is freeing the mpolicy (if it's the last reference). A policy deletion is performed by wicked ifdown or ifreload and the execution is limited to root (uid 0) callers, so it does not bring additional privilege possibilities. Commit: 2ce1be917ebdf66d39bdd3e07d0f76c1bac80df6 https://github.com/openSUSE/wicked/commit/2ce1be917ebdf66d39bdd3e07d0f76c1ba... Author: cfconrad <cfamullaconrad@suse.com> Date: 2023-01-24 (Tue, 24 Jan 2023) Changed paths: M nanny/policy.c Log Message: ----------- Merge pull request https://github.com/openSUSE/wicked/pull/945 nanny: fix use-after-free in debug mode (bsc#1206447) Compare: https://github.com/openSUSE/wicked/compare/fd332f7de15c...2ce1be917ebd