| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 07 Sep 2011 14:15:15 -0700 From: Tim Chen <tim.c.chen@...ux.intel.com> To: "davem@...emloft.net" <davem@...emloft.net> Cc: "sedat.dilek@...il.com" <sedat.dilek@...il.com>, Eric Dumazet <eric.dumazet@...il.com>, "Yan, Zheng" <yanzheng@...n.com>, "netdev@...r.kernel.org" <netdev@...r.kernel.org>, "davem@...emloft.net" <davem@...emloft.net>, "sfr@...b.auug.org.au" <sfr@...b.auug.org.au>, "jirislaby@...il.com" <jirislaby@...il.com>, "Shi, Alex" <alex.shi@...el.com>, Valdis Kletnieks <Valdis.Kletnieks@...edu>, "Yan, Zheng" <zheng.z.yan@...el.com> Subject: Re: [PATCH -next v2] unix stream: Fix use-after-free crashes On Wed, 2011-09-07 at 14:06 -0700, Tim Chen wrote: > On Thu, 2011-09-08 at 08:27 +0800, Yan, Zheng wrote: > > > > err = -EPIPE; > > > out_err: > > > - if (skb == NULL) > > > + if (!steal_refs) > > > scm_destroy(siocb->scm); > > > > I think we should call scm_release() here in the case of > > steal_refs == true. Otherwise siocb->scm->fp may leak. > > Yan Zheng, > > I've updated the patch. If it looks good to you now, can you add your > Signed-off-by to the patch. Pending Sedat's testing on this patch, > I think it is good to go. > > Tim Oops, I've forgotten to add Eric's previous Signed-off-by in my latest patch log. David, please add that when you pick up the patch. Once Yan Zheng added his sign off and Sedat tested the patch, I think it will be good to go. Thanks. Tim -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists