So, going through the 2023 CVE's for io_uring, this is the only one that impacts the 6.x kernel line. The rest were targeting 5.10 (except one for 5.19).
That tells me that io_uring stabilized a lot during 2021.
Google yanking support for it seems like a bad decision. Instead, they should upgrade their 3-year-old kernels, which certainly contain other fixed-but-not-backported security vulnerabilites.
https://www.openwall.com/lists/oss-security/2023/05/08/3
https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=io_uring
That tells me that io_uring stabilized a lot during 2021.
Google yanking support for it seems like a bad decision. Instead, they should upgrade their 3-year-old kernels, which certainly contain other fixed-but-not-backported security vulnerabilites.