| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <536D0CA4.60209@xs4all.nl> Date: Fri, 09 May 2014 19:13:08 +0200 From: Hans Verkuil <hverkuil@...all.nl> To: Pali Rohár <pali.rohar@...il.com>, Jiri Kosina <jkosina@...e.cz> CC: Dan Carpenter <dan.carpenter@...cle.com>, hans.verkuil@...co.com, m.chehab@...sung.com, ext-eero.nurkkala@...ia.com, nils.faerber@...nelconcepts.de, joni.lapilainen@...il.com, freemangordon@....bg, sre@...g0.de, Greg KH <greg@...ah.com>, linux-media@...r.kernel.org, kernel list <linux-kernel@...r.kernel.org>, Pavel Machek <pavel@....cz> Subject: Re: [PATCH v2] radio-bcm2048.c: fix wrong overflow check On 05/09/2014 06:10 PM, Pali Rohár wrote: > On Monday 05 May 2014 15:34:29 Jiri Kosina wrote: >> On Tue, 22 Apr 2014, Dan Carpenter wrote: >>> From: Pali Rohár <pali.rohar@...il.com> >>> >>> This patch fixes an off by one check in >>> bcm2048_set_region(). >>> >>> Reported-by: Dan Carpenter <dan.carpenter@...cle.com> >>> Signed-off-by: Pali Rohár <pali.rohar@...il.com> >>> Signed-off-by: Pavel Machek <pavel@....cz> >>> Signed-off-by: Dan Carpenter <dan.carpenter@...cle.com> >>> --- >>> v2: Send it to the correct list. Re-work the changelog. >>> >>> This patch has been floating around for four months but >>> Pavel and Pali are knuckle-heads and don't know how to use >>> get_maintainer.pl so they never send it to linux-media. >>> >>> Also Pali doesn't give reporter credit and Pavel steals >>> authorship credit. >>> >>> Also when you try explain to them about how to send patches >>> correctly they complain that they have been trying but it >>> is too much work so now I have to do it. During the past >>> four months thousands of other people have been able to >>> send patches in the correct format to the correct list but >>> it is too difficult for Pavel and Pali... *sigh*. >> >> Seems like it's not in linux-next as of today, so I am taking >> it now. Thanks, > > I still do not see this patch in torvalds branch... So what is > needed to include this security buffer overflow patch into > mainline & stable kernels? > Today I collected a pile of pending patches including this one and posted a pull request on the linux-media mailinglist. Once Mauro picks it up it will appear in our tree and then linux-next. He's been travelling for the past two weeks, so he'll have a sizable backlog. Just be patient, it's not forgotten. Regards, Hans -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists