]> bbs.cooldavid.org Git - net-next-2.6.git/commit
git://bbs.cooldavid.org / net-next-2.6.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fc8f2a7) | patch
USB: serial/mos*: prevent reading uninitialized stack memory
authorDan Rosenberg <drosenberg@vsecurity.com>
Wed, 15 Sep 2010 21:44:16 +0000 (17:44 -0400)
committerGreg Kroah-Hartman <gregkh@suse.de>
Mon, 20 Sep 2010 23:05:00 +0000 (16:05 -0700)
commita0846f1868b11cd827bdfeaf4527d8b1b1c0b098
tree01ca49ce4f0c11d1a8274dce1484f039a41781e9tree | snapshot (tar.bz2 tar.gz zip)
parentfc8f2a7608d855b911e35a33e771e6358c705c43commit | diff
USB: serial/mos*: prevent reading uninitialized stack memory

The TIOCGICOUNT device ioctl in both mos7720.c and mos7840.c allows
unprivileged users to read uninitialized stack memory, because the
"reserved" member of the serial_icounter_struct struct declared on the
stack is not altered or zeroed before being copied back to the user.
This patch takes care of it.

Signed-off-by: Dan Rosenberg <dan.j.rosenberg@gmail.com>
Cc: stable <stable@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
drivers/usb/serial/mos7720.c diff | blob | blame | history
drivers/usb/serial/mos7840.c diff | blob | blame | history
Clone of davem's net-next-2.6 tree