Re: net: amend the fix for SO_BSDCOMPAT gsopt infoleak
From: David Miller
Date: Mon Feb 23 2009 - 18:39:32 EST
From: Eugene Teo <eugeneteo@xxxxxxxxx>
Date: Tue, 24 Feb 2009 00:41:12 +0800
> The fix for CVE-2009-0676 (upstream commit df0bca04) is incomplete. Note
> that the same problem of leaking kernel memory will reappear if someone
> on some architecture uses struct timeval with some internal padding (for
> example tv_sec 64-bit and tv_usec 32-bit) --- then, you are going to
> leak the padded bytes to userspace.
>
> Signed-off-by: Eugene Teo <eugeneteo@xxxxxxxxx>
> Reported-by: Mikulas Patocka <mpatocka@xxxxxxxxxx>
Applied and queued up for -stable, thanks Eugene.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/