Re: CVE-2014-9900 fix is not upstream

From: One Thousand Gnomes
Date: Thu Aug 25 2016 - 12:10:47 EST

Next message: James Bottomley: "Re: [PATCH] binfmt_misc: allow selecting the interpreter based on xattr keywords"
Previous message: Cornelia Huck: "Re: [PATCH v2 1/2] KVM: s390: Improve determination of sizes in kvm_s390_import_bp_data()"
In reply to: Johannes Berg: "Re: CVE-2014-9900 fix is not upstream"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> > I see someone did request it 2 years ago:
> > https://gcc.gnu.org/bugzilla/show_bug.cgi?id=63479
>
> I don't think this is sufficient. Basically if you write one field in a
> struct after a memset again, the compiler is allowed by the standard to
> write padding bytes again, causing them to be undefined.

The question is simply what gcc actually does. The rest is C language
lawyering and since the kernel isn't written to the C language spec but
to gcc only gcc matters.

Alan

Next message: James Bottomley: "Re: [PATCH] binfmt_misc: allow selecting the interpreter based on xattr keywords"
Previous message: Cornelia Huck: "Re: [PATCH v2 1/2] KVM: s390: Improve determination of sizes in kvm_s390_import_bp_data()"
In reply to: Johannes Berg: "Re: CVE-2014-9900 fix is not upstream"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]