Re: [PATCH] fix a kernel infoleak in x25 module

From: David Miller
Date: Mon May 09 2016 - 22:47:14 EST

Next message: Lijun Ou: "[RESEND PATCH v7 16/21] IB/hns: Add ah operations support"
Previous message: Masami Hiramatsu: "Re: [PATCH perf/core v2 2/8] perf probe: Check the return value of strbuf APIs"
In reply to: Kangjie Lu: "[PATCH] fix a kernel infoleak in x25 module"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Kangjie Lu <kangjielu@xxxxxxxxx>
Date: Sun, 8 May 2016 12:10:14 -0400

> Stack object "dte_facilities" is allocated in x25_rx_call_request(),
> which is supposed to be initialized in x25_negotiate_facilities.
> However, 5 fields (8 bytes in total) are not initialized. This
> object is then copied to userland via copy_to_user, thus infoleak
> occurs.
>
> Signed-off-by: Kangjie Lu <kjlu@xxxxxxxxxx>

Applied and queued up for -stable thanks.

Please start formatting your Subject lines properly, I've been fixing
all of them up by hand.

You should specify a subsystem name prefix, then a ":" character, then
a space, then a description of your change. For example, for this
patch an appropriate Subject would have been:

[PATCH] x25: Fix a kernel infoleak in x25_negotiate_facilities().

Thanks.

Next message: Lijun Ou: "[RESEND PATCH v7 16/21] IB/hns: Add ah operations support"
Previous message: Masami Hiramatsu: "Re: [PATCH perf/core v2 2/8] perf probe: Check the return value of strbuf APIs"
In reply to: Kangjie Lu: "[PATCH] fix a kernel infoleak in x25 module"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]