Date: Mon, 8 Apr 2013 21:49:05 +0300 From: Dan Carpenter <dan.carpenter@...cle.com> To: P J P <ppandit@...hat.com> Cc: oss security list <oss-security@...ts.openwall.com> Subject: Re: CVE Request: kernel information leak in fs/compat_ioctl.c VIDEO_SET_SPU_PALETTE On Mon, Apr 08, 2013 at 09:44:33PM +0300, Dan Carpenter wrote: > On Mon, Apr 08, 2013 at 10:18:30PM +0530, P J P wrote: > > > > Unless `access_ok()' in `__get_user' returns 0, which it does not, OR > > sizeof(*ptr) is > 8 bytes. > Oh, you're saying that access_ok() can't fail. That's true on some arches, and not on others. regards, dan carpenter
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.