lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date: Tue, 14 Nov 2023 09:41:28 -0800
From: Kees Cook <keescook@...omium.org>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: linux-kernel@...r.kernel.org, Arnd Bergmann <arnd@...db.de>,
	Bill Wendling <morbo@...gle.com>,
	"Gustavo A. R. Silva" <gustavoars@...nel.org>,
	Kees Cook <keescook@...omium.org>,
	kernel test robot <lkp@...el.com>,
	Konstantin Runov <runebone1@...il.com>,
	KP Singh <kpsingh@...nel.org>, linux-hardening@...r.kernel.org
Subject: [GIT PULL] hardening fixes for v6.7-rc2

Hi Linus,

Please pull these small hardening fixes for v6.7-rc2.

Thanks!

-Kees

The following changes since commit 9cca73d7b4bfec75b2fcef751015f31691afa792:

  hwmon: (acpi_power_meter) replace open-coded kmemdup_nul (2023-10-24 14:10:53 -0700)

are available in the Git repository at:

  https://git.kernel.org/pub/scm/linux/kernel/git/kees/linux.git tags/hardening-v6.7-rc2

for you to fetch changes up to 782ce431613cf08c3a00dca42ad925c3b1108d09:

  gcc-plugins: latent_entropy: Fix typo (args -> argc) in plugin description (2023-11-14 09:32:47 -0800)

----------------------------------------------------------------
kernel hardening fixes for v6.7-rc2

- stackleak: add declarations for global functions (Arnd Bergmann)

- gcc-plugins: randstruct: Only warn about true flexible arrays (Kees Cook)

- gcc-plugins: latent_entropy: Fix description typo (Konstantin Runov)

----------------------------------------------------------------
Arnd Bergmann (1):
      stackleak: add declarations for global functions

Kees Cook (1):
      gcc-plugins: randstruct: Only warn about true flexible arrays

Konstantin Runov (1):
      gcc-plugins: latent_entropy: Fix typo (args -> argc) in plugin description

 include/linux/stackleak.h                     |  6 ++++++
 scripts/gcc-plugins/latent_entropy_plugin.c   |  4 ++--
 scripts/gcc-plugins/randomize_layout_plugin.c | 10 ----------
 3 files changed, 8 insertions(+), 12 deletions(-)

-- 
Kees Cook

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ