Re: Information leak in pptp_bind

From: Hannes Frederic Sowa
Date: Mon Dec 14 2015 - 17:45:06 EST

Next message: Stephan Mueller: "Re: WARNING in crypto_wait_for_test"
Previous message: K. Y. Srinivasan: "[PATCH RESEND 00/27] Drivers: hv: Miscellaneous fixes."
In reply to: Dmitry Vyukov: "Information leak in pptp_bind"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 14.12.2015 11:38, Dmitry Vyukov wrote:
> The following program leak various uninit garbage including kernel
> addresses and whatever is on kernel stack, in particular defeating
> ASLR. The issue is in pptp_bind which does not verify sockaddr_len.

Thanks for the report!

I send out a patch soon.

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Stephan Mueller: "Re: WARNING in crypto_wait_for_test"
Previous message: K. Y. Srinivasan: "[PATCH RESEND 00/27] Drivers: hv: Miscellaneous fixes."
In reply to: Dmitry Vyukov: "Information leak in pptp_bind"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]