block/loop: fix use after free
lo_rw_aio->call_read_iter-> 1 aops->direct_IO 2 iov_iter_revert lo_rw_aio_complete could happen between 1 and 2, the bio and bvec could be freed before 2, which accesses bvec. Signed-off-by:Shaohua Li <shli@fb.com> Signed-off-by:
parent
12cd3a2f
Please register or sign in to comment