Re: [PATCH v5] exec: load_script: Do not exec truncated interpreter path

From: Kees Cook
Date: Mon Feb 18 2019 - 19:59:56 EST

Next message: Masahiro Yamada: "Re: [PATCH 1/2] wireless: mt76: call hweight8() instead of __sw_hweight8()"
Previous message: Linus Torvalds: "Re: [PATCH v5] exec: load_script: Do not exec truncated interpreter path"
In reply to: Linus Torvalds: "Re: [PATCH v5] exec: load_script: Do not exec truncated interpreter path"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Feb 18, 2019 at 4:52 PM Linus Torvalds
<torvalds@xxxxxxxxxxxxxxxxxxxx> wrote:
>
> On Mon, Feb 18, 2019 at 4:36 PM Kees Cook <keescook@xxxxxxxxxxxx> wrote:
> >
> > This attempts the protection again, but allows arguments to
> > remain truncated. In an effort to improve readability, helper functions
> > and comments have been added.
>
> Applied directly, in the (maybe naive) belief that this can't possibly
> break anything, and let's just get it fixed for 5.0 rather than wait
> another release.
>
> Famous last words.

Eek. :)

--
Kees Cook

Next message: Masahiro Yamada: "Re: [PATCH 1/2] wireless: mt76: call hweight8() instead of __sw_hweight8()"
Previous message: Linus Torvalds: "Re: [PATCH v5] exec: load_script: Do not exec truncated interpreter path"
In reply to: Linus Torvalds: "Re: [PATCH v5] exec: load_script: Do not exec truncated interpreter path"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]