Re: [PATCH] block: ioctl: fix information leak to userland

From: Jens Axboe
Date: Mon Nov 08 2010 - 08:43:01 EST

Next message: Jens Axboe: "Re: [PATCH] floppy: replace NO_GEOM macro with a function"
Previous message: Don Zickus: "Re: [PATCH] watchdog: touch_nmi_watchdog should only touch localcpu not every one"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2010-11-04 15:48, Vasiliy Kulikov wrote:
> Structure hd_geometry is copied to userland with 4 padding bytes
> between cylinders and start fields uninitialized on 64-bit platforms.
> It leads to leaking of contents of kernel stack memory.
>
> Currently there is no memset() in real implementations of getgeo()
> in drivers/block/, so it makes sense to have memset() in blkdev_ioctl().

Thanks, applied.

--
Jens Axboe

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jens Axboe: "Re: [PATCH] floppy: replace NO_GEOM macro with a function"
Previous message: Don Zickus: "Re: [PATCH] watchdog: touch_nmi_watchdog should only touch localcpu not every one"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]