| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 7 Jul 2008 14:49:34 +0200 (CEST)
From: Jiri Kosina <jkosina@...e.cz>
To: "Darren Jenkins\\" <darrenrjenkins@...il.com>,
Andrew Morton <akpm@...ux-foundation.org>
cc: kernel Janitors <kernel-janitors@...r.kernel.org>,
LKML <linux-kernel@...r.kernel.org>,
David Sterba <dsterba@...e.cz>
Subject: Re: [PATCH] drivers/char/pcmcia/ipwireless/hardware.c fix resource
leak
On Mon, 7 Jul 2008, Darren Jenkins\ wrote:
> G'day people,
>
> Coverity CID: 2172 RESOURCE_LEAK
>
> When pool_allocate() tries to enlarge a packet, if it can not allocate
> enough memory, it returns NULL without first freeing the old packet.
>
> This patch just frees the packet first.
>
> Signed-off-by: Darren Jenkins <darrenrjenkins@...ilcom>
>
> diff --git a/drivers/char/pcmcia/ipwireless/hardware.c b/drivers/char/pcmcia/ipwireless/hardware.c
> index ba6340a..929101e 100644
> --- a/drivers/char/pcmcia/ipwireless/hardware.c
> +++ b/drivers/char/pcmcia/ipwireless/hardware.c
> @@ -590,8 +590,10 @@ static struct ipw_rx_packet *pool_allocate(struct ipw_hardware *hw,
> packet = kmalloc(sizeof(struct ipw_rx_packet) +
> old_packet->length + minimum_free_space,
> GFP_ATOMIC);
> - if (!packet)
> + if (!packet) {
> + kfree(old_packet);
> return NULL;
> + }
> memcpy(packet, old_packet,
> sizeof(struct ipw_rx_packet)
> + old_packet->length);
>
>
>
Thanks a lot for reporting this, Darren.
Andrew, could you please push this through -mm? Thanks.
Signed-off-by: Jiri Kosina <jkosina@...e.cz>
--
Jiri Kosina
SUSE Labs
Powered by blists - more mailing lists