Re: [Security] [PATCH] proc: avoid information leaks to non-privileged processes
From: Eric W. Biederman
Date: Mon May 04 2009 - 16:21:17 EST
Arjan van de Ven <arjan@xxxxxxxxxxxxx> writes:
> On Mon, 4 May 2009 12:00:12 -0700 (PDT)
> Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx> wrote:
>
>>
>>
>> On Mon, 4 May 2009, Jake Edge wrote:
>> >
>> > This is essentially v2 of "[PATCH] proc: avoid leaking eip, esp, or
>> > wchan to non-privileged processes", adding some of Eric Biederman's
>> > suggestions as well as the start_stack change (only give out that
>> > address if the process is ptrace()-able). This has been tested
>> > with ps and top without any ill effects being seen.
>>
>> Looks sane to me. Anybody objects?
>>
>
> Acked-by: Arjan van de Ven <arjan@xxxxxxxxxxxxxxx>
Looks sane here.
Acked-by: "Eric W. Biederman" <ebiederm@xxxxxxxxxxxx>
Eric
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/