6b2b03268d549b6446d1b148f0262f87ef737492 - third_party/linux

commit	6b2b03268d549b6446d1b148f0262f87ef737492	[log] [tgz]
author	Jens Axboe <jens.axboe@oracle.com>	Fri Feb 08 08:49:14 2008 -0800
committer	Greg Kroah-Hartman <gregkh@suse.de>	Fri Feb 08 12:01:52 2008 -0800
tree	832250f8fface4ffe973185510f7b800c73bb496
parent	f70995b2044350bd966a32ecf43164c204293689 [diff]

splice: missing user pointer access verification (CVE-2008-0009/10)

patch 8811930dc74a503415b35c4a79d14fb0b408a361 in mainline.

vmsplice_to_user() must always check the user pointer and length
with access_ok() before copying. Likewise, for the slow path of
copy_from_user_mmap_sem() we need to check that we may read from
the user region.

Signed-off-by: Jens Axboe <jens.axboe@oracle.com>
Cc: Wojciech Purczynski <cliph@research.coseinc.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

fs/splice.c[diff]

1 file changed

tree: 832250f8fface4ffe973185510f7b800c73bb496

arch/
block/
crypto/
Documentation/
drivers/
fs/
include/
init/
ipc/
kernel/
lib/
mm/
net/
scripts/
security/
sound/
usr/
.gitignore
.mailmap
COPYING
CREDITS
Kbuild
MAINTAINERS
Makefile
README
REPORTING-BUGS