| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 15 Oct 2006 14:18:35 -0300 From: Mauro Carvalho Chehab <mchehab@...radead.org> To: Manu Abraham <abraham.manu@...il.com> Cc: Florin Malita <fmalita@...il.com>, Trent Piepho <xyzzy@...akeasy.org>, v4l-dvb maintainer list <v4l-dvb-maintainer@...uxtv.org>, linux-kernel@...r.kernel.org Subject: Re: [v4l-dvb-maintainer] [PATCH] V4L/DVB: potential leak in dvb-bt8xx Em Dom, 2006-10-15 às 20:35 +0400, Manu Abraham escreveu: > Florin Malita wrote: > > Trent Piepho wrote: > >> I believe that 'state' will be kfree'd by the dst_attach() function if there > >> is a failure. Not what you would expect, to have it allocated in the bt8xx > >> driver (why do is there??) and freed on error in a different function. > >> > > > > Hm, you're right - it is kfreed in dst_attach(). But we're still missing > > the kmalloc result check... > > > > This patch was applied a few days back Yes. It is at: http://www.kernel.org/git/?p=linux/kernel/git/mchehab/v4l-dvb.git;a=commit;h=626ae83bb24927ca015503448f0199842ae2e8da I've already asked Linus to pull it, together with other 17 fixes, to Mainstream. > > Manu Cheers, Mauro. - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists