[PATCH] sysctl: Check length at deprecated_sysctl_warning.

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Tetsuo Handa

Subject: [PATCH] sysctl: Check length at deprecated_sysctl_warning.

Date: Wednesday, November 7, 2007 - 7:57 pm

Original patch assumed args->nlen < CTL_MAXNAME, but it can be false.

Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>


--- linux-2.6.22-rc2.orig/kernel/sysctl.c	2007-11-08 10:38:17.000000000 +0900
+++ linux-2.6.22-rc2/kernel/sysctl.c	2007-11-08 11:24:27.000000000 +0900
@@ -2609,6 +2609,10 @@ static int deprecated_sysctl_warning(str
 	int name[CTL_MAXNAME];
 	int i;
 
+	/* Check args->nlen. */
+	if (args->nlen > CTL_MAXNAME)
+		return -EFAULT;
+
 	/* Read in the sysctl name for better debug message logging */
 	for (i = 0; i < args->nlen; i++)
 		if (get_user(name[i], args->name + i))
-
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH] sysctl: Check length at deprecated_sysctl_warning., Tetsuo Handa, (Wed Nov 7, 7:57 pm)

Re: [PATCH] sysctl: Check length at deprecated_sysctl_warning., Andrew Morton, (Wed Nov 7, 8:22 pm)

Re: [PATCH] sysctl: Check length at deprecated_sysctl_warning., Tetsuo Handa, (Thu Nov 8, 1:19 am)

Re: [PATCH] sysctl: Check length at deprecated_sysctl_warning., Eric W. Biederman, (Mon Nov 12, 2:44 am)

Re: [PATCH] sysctl: Check length at deprecated_sysctl_warning., Tetsuo Handa, (Mon Nov 12, 4:42 am)

[PATCH] sysctl: Check length at deprecated_sysctl_warning., Tetsuo Handa, (Mon Nov 12, 8:07 pm)

Re: [PATCH] sysctl: Check length at deprecated_sysctl_warning., Andrew Morton, (Mon Nov 12, 8:13 pm)

Re: [PATCH] sysctl: Check length at deprecated_sysctl_warning., Tetsuo Handa, (Mon Nov 12, 8:50 pm)

Re: [PATCH] sysctl: Check length at deprecated_sysctl_warning., Eric W. Biederman, (Tue Nov 13, 6:24 am)


linux-kernel:
Eli Cohen	Re: LRO num of frags limit
Yinghai Lu	Re: Linux 2.6.27-rc5: System boot regression caused by commit a2bd7274b47124d2fc4d...
David Howells	Re: [PATCH 3/17] afs: convert afs_dir_get_page to read_kmap_page
Jan Beulich	[PATCH] x86: fix ticket spin lock asm constraints
Greg Kroah-Hartman	[PATCH 20/36] Driver core: Call device_pm_add() after bus_add_device() in device_a...
git:
Bill Lear	cpio command not found
Ben Schmidt	Getting the path right for git over SSH
Fredrik Kuivinen	Re: fatal: unable to create '.git/index': File exists
Jing Xue	Re: git rm --cached
Laflen, Brandon (GE, Research)	RE: fatal: Unable to find remote helper for 'http'
linux-netdev:
Johann Baudy	Packet mmap: TX RING and zero copy
Evgeniy Polyakov	Re: [2/3] POHMELFS: Documentation.
Eric W. Biederman	Re: [RFC][PATCH] ns: Syscalls for better namespace sharing control.
Yahoo Award Center	Yahoo 2011 Award Notice!!!
Stephen Hemminger	Re: NAPI, rx_no_buffer_count, e1000, r8169 and other actors
openbsd-misc:
Bryan Irvine	Re: DVD burn error: No space left on device
Anders Langworthy	Re: What does your environment look like?
elitdostlar	Seks partneri arayan bayanlar bu adreste - 8878xs706x6438
Télé Loisirs	[Programme TV] Lundi 21 Décembre 2009
Skylar Hawk	Re: asus eee 1201n - acpitz0 critical temperature 255C (5282K), shutting down
git-commits-head:
Linux Kernel Mailing List	Linux 2.6.34-rc4
Linux Kernel Mailing List	x86 boot: only pick up additional EFI memmap if add_efi_memmap flag
Linux Kernel Mailing List	[ALSA] hda-codec - Add support for VIA VT1708B HD audio codec
Linux Kernel Mailing List	PCI hotplug: acpiphp: remove superfluous _HPP/_HPX evaluation
Linux Kernel Mailing List	powerpc/fsl_msi: enable msi allocation in all banks