Re: 8250 serial console fixes -- issue

From: Russell King
Date: Fri Feb 03 2006 - 11:00:31 EST

Next message: Thierry Vignaud: "Re: + sis5513-support-sis-965l.patch added to -mm tree"
Previous message: Juhani Rautiainen: "Re: [PATCH] amd76x_pm: C3 powersaving for AMD K7"
In reply to: Glen Turner: "Re: 8250 serial console fixes -- issue"
Next in thread: Glen Turner: "Re: 8250 serial console fixes -- issue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Feb 04, 2006 at 12:57:28AM +1030, Glen Turner wrote:
>
> Hi Russell,
>
> Thanks for your response.
>
> > A normal user can't produce arbitarily formatted
> > kernel messages
>
> They don't need to provide an entire message, just a
> AT string (a vector which a user could control
> could be a volume label on removable media).

So?

My point stands - if the user can provide an arbitary string to printk,
they can fake any kernel message. That in itself is a security bug.
If there is an instance of that, then that's the real bug which would
need fixing.

Once those bugs have been fixed, your claimed bug is also magically
fixed.

--
Russell King
Linux kernel 2.6 ARM Linux - http://www.arm.linux.org.uk/
maintainer of: 2.6 Serial core
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Thierry Vignaud: "Re: + sis5513-support-sis-965l.patch added to -mm tree"
Previous message: Juhani Rautiainen: "Re: [PATCH] amd76x_pm: C3 powersaving for AMD K7"
In reply to: Glen Turner: "Re: 8250 serial console fixes -- issue"
Next in thread: Glen Turner: "Re: 8250 serial console fixes -- issue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]