| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 30 Mar 2015 07:32:23 -0400 From: Paul Moore <paul@...l-moore.com> To: maninder1.s@...sung.com Cc: "davem@...emloft.net" <davem@...emloft.net>, "netdev@...r.kernel.org" <netdev@...r.kernel.org>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, Vaneet Narang <v.narang@...sung.com>, AJEET YADAV <ajeet.y@...sung.com> Subject: Re: [Fix kernel crash in cipso_v4_sock_delattr ] On Monday, March 30, 2015 11:09:00 AM Maninder Singh wrote: > Dear All, > we found One Kernel Crash issue in cipso_v4_sock_delattr :- > As Cipso supports only inet sockets so cipso_v4_sock_delattr will crash when > try to access any other socket type. cipso_v4_sock_delattr access > sk_inet->inet_opt which may contain not NULL but invalid address. we found > this issue with netlink socket.(reproducible by trinity using sendto system > call .) Hello, First, please go read the Documentation/SubmittingPatches from the kernel sources; your patch needs to be resubmitted and the instructions in that file will show you how to do it correctly next time. Second, this appears to only affect Smack based systems, yes? SELinux based systems should have the proper checking in place to prevent this (the checks are handled in the LSM). That said, it probably wouldn't hurt to add the extra checking to netlbl_sock_delattr(). If you properly resubmit your patch I'll ACK it. -Paul -- paul moore www.paul-moore.com -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists