| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 13 Jun 2016 19:36:37 +0100 From: Ben Hutchings <ben@...adent.org.uk> To: linux-kernel@...r.kernel.org, stable@...r.kernel.org CC: akpm@...ux-foundation.org, "Mathias Nyman" <mathias.nyman@...ux.intel.com>, "Lu Baolu" <baolu.lu@...ux.intel.com>, "Greg Kroah-Hartman" <gregkh@...uxfoundation.org> Subject: [PATCH 3.16 021/114] usb: xhci: fix wild pointers in xhci_mem_cleanup 3.16.36-rc1 review patch. If anyone has any objections, please let me know. ------------------ From: Lu Baolu <baolu.lu@...ux.intel.com> commit 71504062a7c34838c3fccd92c447f399d3cb5797 upstream. This patch fixes some wild pointers produced by xhci_mem_cleanup. These wild pointers will cause system crash if xhci_mem_cleanup() is called twice. Reported-and-tested-by: Pengcheng Li <lpc.li@...ilicon.com> Signed-off-by: Lu Baolu <baolu.lu@...ux.intel.com> Signed-off-by: Mathias Nyman <mathias.nyman@...ux.intel.com> Signed-off-by: Greg Kroah-Hartman <gregkh@...uxfoundation.org> Signed-off-by: Ben Hutchings <ben@...adent.org.uk> --- drivers/usb/host/xhci-mem.c | 6 ++++++ 1 file changed, 6 insertions(+) --- a/drivers/usb/host/xhci-mem.c +++ b/drivers/usb/host/xhci-mem.c @@ -1882,6 +1882,12 @@ no_bw: kfree(xhci->rh_bw); kfree(xhci->ext_caps); + xhci->usb2_ports = NULL; + xhci->usb3_ports = NULL; + xhci->port_array = NULL; + xhci->rh_bw = NULL; + xhci->ext_caps = NULL; + xhci->page_size = 0; xhci->page_shift = 0; xhci->bus_state[0].bus_suspended = 0;
Powered by blists - more mailing lists