shinys000114/linux
1
0
Fork 0
mirror of https://github.com/hardkernel/linux.git synced 2026-04-02 19:23:01 +09:00
Code Issues Packages Projects Releases Wiki Activity
Files
97ddb8ec61ba273d325b2409c5aee8a37e98e44b
linux/arch
History
Yihui ZENG 2072402afd s390/cmm: fix information leak in cmm_timeout_handler() 
commit b8e51a6a9d upstream.

The problem is that we were putting the NUL terminator too far:

	buf[sizeof(buf) - 1] = '\0';

If the user input isn't NUL terminated and they haven't initialized the
whole buffer then it leads to an info leak.  The NUL terminator should
be:

	buf[len - 1] = '\0';

Signed-off-by: Yihui Zeng <yzeng56@asu.edu>
Cc: stable@vger.kernel.org
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
[heiko.carstens@de.ibm.com: keep semantics of how *lenp and *ppos are handled]
Signed-off-by: Heiko Carstens <heiko.carstens@de.ibm.com>
Signed-off-by: Vasily Gorbik <gor@linux.ibm.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2023-05-15 14:56:05 +09:00
..
alpha
alpha: Fix Eiger NR_IRQS to 128
2023-05-15 11:34:34 +09:00
arc
ARC: export "abort" for modules
2023-05-15 14:31:22 +09:00
arm
ARM: dts: am4372: Set memory bandwidth limit for DISPC
2023-05-15 14:50:03 +09:00
arm64
arm64: fix unreachable code issue with cmpxchg
2023-05-15 14:41:04 +09:00
avr32
BACKPORT [FROMLIST] New getsockopt option to get socket cookie
2017-05-31 00:53:04 +00:00
blackfin
pinctrl: adi2: Fix Kconfig build problem
2017-12-20 10:07:32 +01:00
c6x
c6x/ptrace: Remove useless PTRACE_SETREGSET implementation
2017-03-31 10:31:46 +02:00
cris
cris: Only build flash rescue image if CONFIG_ETRAX_AXISFLASHMAP is selected
2017-01-12 11:39:24 +01:00
frv
Merge 4.9.101 into android-4.9
2018-05-19 14:06:17 +02:00
h8300
h8300: use cc-cross-prefix instead of hardcoding h8300-unknown-linux-
2023-05-15 12:16:45 +09:00
hexagon
hexagon: modify ffs() and fls() to return int
2023-05-15 08:34:09 +09:00
ia64
ia64:unwind: fix double free for mod->arch.init_unw_table
2023-05-15 14:33:14 +09:00
m32r
BACKPORT [FROMLIST] New getsockopt option to get socket cookie
2017-05-31 00:53:04 +00:00
m68k
bug.h: work around GCC PR82365 in BUG()
2023-05-15 13:57:01 +09:00
metag
metag/uaccess: Check access_ok in strncpy_from_user
2017-05-25 15:44:46 +02:00
microblaze
microblaze: Fix simpleImage format generation
2023-05-12 16:43:59 +09:00
mips
MIPS: fw: sni: Fix out of bounds init of o32 stack
2023-05-15 14:55:21 +09:00
mn10300
Merge 4.9.82 into android-4.9
2018-02-17 14:52:07 +01:00
nios2
nios2: reserve boot memory for device tree
2017-04-12 12:41:14 +02:00
openrisc
kthread: fix boot hang (regression) on MIPS/OpenRISC
2023-05-15 08:10:47 +09:00
parisc
parisc: Fix vmap memory leak in ioremap()/iounmap()
2023-05-15 14:50:56 +09:00
powerpc
powerpc/powernv: Restrict OPAL symbol map to only be readable by root
2023-05-15 14:47:35 +09:00
s390
s390/cmm: fix information leak in cmm_timeout_handler()
2023-05-15 14:56:05 +09:00
score
Merge branch 'gup_flag-cleanups'
2016-10-19 08:39:47 -07:00
sh
sh: kernel: hw_breakpoint: Fix missing break in switch statement
2023-05-15 14:17:54 +09:00
sparc
bpf: get rid of pure_initcall dependency to enable jits
2023-05-15 14:17:59 +09:00
tile
futex: Remove duplicated code and fix undefined behaviour
2018-05-19 10:27:00 +02:00
um
um: Silence lockdep complaint about mmap_sem
2023-05-15 14:07:52 +09:00
unicore32
unicore32: use simpler API for random address requests
2016-10-11 15:06:32 -07:00
x86
efi/x86: Do not clean dummy variable in kexec path
2023-05-15 14:55:13 +09:00
xtensa
xtensa: drop EXPORT_SYMBOL for outs*/ins*
2023-05-15 14:50:55 +09:00
.gitignore
Kconfig
cpu/hotplug: Provide knobs to control SMT
2023-05-12 16:53:23 +09:00