Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20170626064355.GA14009@kroah.com>
Date: Mon, 26 Jun 2017 08:43:55 +0200
From: Greg KH <greg@...ah.com>
To: oss-security@...ts.openwall.com
Subject: Re: Can someone explain all the CONFIG_VMAP_STACK
 CVEs lately?

On Sun, Jun 25, 2017 at 08:49:43PM -0700, Andy Lutomirski wrote:
> I haven't checked what USB does, but I suspect it's a wildly
> out-of-bounds DMA transfer that's more likely to result in a
> straight-up abort than easily exploitable corruption.

For USB, yes, it's just a totally failed DMA transaction and the driver
will not work at all.  It's been that way since the 2.2 kernel days,
nothing new there, it's just that this can now happen on "common"
architectures :)

thanks,

greg k-h

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.