OpenE2K/linux
6
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
a364c8cf80
linux/arch/alpha
History
Dan Rosenberg 21c5977a83 alpha: fix several security issues 
Fix several security issues in Alpha-specific syscalls.  Untested, but
mostly trivial.

1. Signedness issue in osf_getdomainname allows copying out-of-bounds
kernel memory to userland.

2. Signedness issue in osf_sysinfo allows copying large amounts of
kernel memory to userland.

3. Typo (?) in osf_getsysinfo bounds minimum instead of maximum copy
size, allowing copying large amounts of kernel memory to userland.

4. Usage of user pointer in osf_wait4 while under KERNEL_DS allows
privilege escalation via writing return value of sys_wait4 to kernel
memory.

Signed-off-by: Dan Rosenberg <drosenberg@vsecurity.com>
Cc: Richard Henderson <rth@twiddle.net>
Cc: Ivan Kokshaysky <ink@jurassic.park.msu.ru>
Cc: Matt Turner <mattst88@gmail.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
2011-06-15 20:04:02 -07:00
..
boot include cleanup: Update gfp.h and slab.h includes to prepare for breaking implicit slab.h inclusion from percpu.h 2010-03-30 22:02:32 +09:00
include/asm ns: Wire up the setns system call 2011-05-28 10:48:39 -07:00
kernel alpha: fix several security issues 2011-06-15 20:04:02 -07:00
lib Fix common misspellings 2011-03-31 11:26:23 -03:00
math-emu alpha: change to new Makefile flag variables 2011-01-17 05:42:13 +01:00
mm alpha, mm: set all online nodes in N_NORMAL_MEMORY 2011-05-25 08:39:23 -07:00
oprofile Fix common misspellings 2011-03-31 11:26:23 -03:00
defconfig defconfig reduction 2010-08-14 22:26:53 +02:00
Kconfig arch: remove CONFIG_GENERIC_FIND_{NEXT_BIT,BIT_LE,LAST_BIT} 2011-05-26 17:12:38 -07:00
Kconfig.debug
Makefile