52149ba6b0
A user space program can read uninitialised kernel memory by appending to a file from a bad address and then reading the result back. The cause is the copy_from_user function that does not clear the remaining bytes of the kernel buffer after it got a fault on the user space address. Signed-off-by: Martin Schwidefsky <schwidefsky@de.ibm.com> |
||
---|---|---|
.. | ||
appldata | ||
boot | ||
crypto | ||
hypfs | ||
kernel | ||
lib | ||
math-emu | ||
mm | ||
oprofile | ||
Kconfig | ||
Kconfig.debug | ||
Makefile | ||
defconfig |