| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2a64913e-517e-5f2d-f96e-6bc10104adbe@oracle.com>
Date: Wed, 29 Jul 2020 14:50:22 -0400
From: George Kennedy <george.kennedy@...cle.com>
To: Greg KH <gregkh@...uxfoundation.org>
Cc: jslaby@...e.com, ebiggers@...gle.com, linux-kernel@...r.kernel.org,
dan.carpenter@...cle.com, dhaval.giani@...cle.com
Subject: Re: [PATCH 1/1] vt_ioctl: prevent VT_RESIZEX font height change from
causing potential out-of-bounds access
Hi Greg,
I will re-work this patch based on comments from Dan.
Thank you,
George
On 7/29/2020 8:53 AM, Greg KH wrote:
> On Wed, Jul 29, 2020 at 08:39:41AM -0400, George Kennedy wrote:
>> Add a VT_RESIZEX check to ensure that changing the font height will not
>> cause a potential out-of-bounds access. The candidate font height contained
>> in "v_clin", though below the max, could still result in accesses beyond
>> the allocated font data size.
>>
>> Signed-off-by: George Kennedy <george.kennedy@...cle.com>
>> Reported-by: syzbot+38a3699c7eaf165b97a6@...kaller.appspotmail.com
> Did syzbot also test this that it fixes the reported issue?
>
> What commit does this fix? Should it go back farther to stable releases
> too?
>
> thanks,
>
> greg k-h
Powered by blists - more mailing lists