Re: EDAC list as Trojan Horse distribution ??

From: Hermann Ruckerbauer
Date: Tue Mar 16 2021 - 13:57:29 EST

Next message: Václav Kubernát: "[PATCH v2 3/5] hwmon: (max31790) Show 0 RPM/fault when input disabled"
Previous message: Václav Kubernát: "[PATCH v2 2/5] hwmon: (max31790) Fix and split pwm*_enable"
Next in thread: Borislav Petkov: "Re: EDAC list as Trojan Horse distribution ??"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Hello *,
==> one more time as plain text..
>
>
> quite some tiem ago i sent a question to the EDAC list..
> I never receveived an answer.
>
> today i got an answer with my original question quoted and a .zip
> file attached:
>
> ======================================
>
> from: nikolay.temizov@xxxxxxxxxxxxxxxxxx
>
> Hello,
>
> Sorry, for my late reply to your question. Attached is the document
> you need.
>
> *Thank you*,
>
> ========================================
>
> I assume this is just to install a trojan horse when opening the
> attached zip (also I assume most of you will work on linux and it
> might not be a Problem for you anyhow ;-) .
>
> Virus total reports a Trojan horse, but only for with 2 out of 61
> virus scan engines (and I have to admit, I did not knew K7AntiVirus
> and Qihoo-360 before, all other engines reported the file as
> clean!!!!!!! ).
>
> So be careful when you get some feedback to old requests from this list
>
> Hermann
>
>
> --
> Our next Events:
> Online Seminar: Open the Black Box of Memory
> Date: 01.03 - 05.03.2021 (5 times 9:00 - 13:00)
>
> EKH - EyeKnowHow
> Signal Quality - Made in Bavaria
> Hermann Ruckerbauer
> www.EyeKnowHow.de
> Hermann.Ruckerbauer@xxxxxxxxxxxxx
> Itzlinger Strasse 21a
> 94469 Deggendorf
> Tel.: +49 (0)991 / 29 69 29 05
> Mobile: +49 (0)176 / 787 787 77
> Fax: +49 (0)991 / 98158793
> Hello,
>
>
>
>
>
> Am 16.04.2020 um 10:40 schrieb He Zhe:
>> Can this be considered for the moment?
>>
>> Thanks,
>> Zhe
>>
>> On 3/4/20 2:39 PM, zhe.he@xxxxxxxxxxxxx wrote:
>>> From: He Zhe <zhe.he@xxxxxxxxxxxxx>
>>>
>>> 32-bit user-space program would get errors like the following from ioctl
>>> syscall due to missing compat_ioctl.
>>> MCE_GET_RECORD_LEN: Inappropriate ioctl for device
>>>
>>> compat_ptr_ioctl is provided as a generic implementation of .compat_ioctl
>>> file operation to ioctl functions that either ignore the argument or pass
>>> a pointer to a compatible data type.
>>>
>>> Signed-off-by: He Zhe <zhe.he@xxxxxxxxxxxxx>
>>> ---
>>> arch/x86/kernel/cpu/mce/dev-mcelog.c | 1 +
>>> 1 file changed, 1 insertion(+)
>>>
>>> diff --git a/arch/x86/kernel/cpu/mce/dev-mcelog.c b/arch/x86/kernel/cpu/mce/dev-mcelog.c
>>> index 7c8958d..6c9b91b7 100644
>>> --- a/arch/x86/kernel/cpu/mce/dev-mcelog.c
>>> +++ b/arch/x86/kernel/cpu/mce/dev-mcelog.c
>>> @@ -328,6 +328,7 @@ static const struct file_operations mce_chrdev_ops = {
>>> .write = mce_chrdev_write,
>>> .poll = mce_chrdev_poll,
>>> .unlocked_ioctl = mce_chrdev_ioctl,
>>> + .compat_ioctl = compat_ptr_ioctl,
>>> .llseek = no_llseek,
>>> };
>>>
>

Next message: Václav Kubernát: "[PATCH v2 3/5] hwmon: (max31790) Show 0 RPM/fault when input disabled"
Previous message: Václav Kubernát: "[PATCH v2 2/5] hwmon: (max31790) Fix and split pwm*_enable"
Next in thread: Borislav Petkov: "Re: EDAC list as Trojan Horse distribution ??"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]