| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 29 Jan 2014 09:47:54 +0100 From: Andre Naujoks <nautsch2@...il.com> To: David Miller <davem@...emloft.net> CC: eric.dumazet@...il.com, socketcan@...tkopp.net, netdev@...r.kernel.org Subject: Re: [PATCH stable 3.11+] can: bcm: add skb destructor On 29.01.2014 08:46, schrieb David Miller: > From: Andre Naujoks <nautsch2@...il.com> > Date: Wed, 29 Jan 2014 08:40:03 +0100 > >> Even if this is a bug in the CAN BCM implementation. Your "fix" just >> enabled a user space application to shut down any machine with a kernel >> containing the BUG_ON patch. > > Rather, he detected a potential stray pointer reference to freed data > that was caused by the CAN code which would difficult if not > impossible to detect otherwise. > > That's even more dangerous, and you should be thanking him. "potential" is the keyword here. But its a definite kernel crash as it is right now with a standard use case for the BCM. Don't get me wrong. If there are bugs in the code, they should be fixed, but I don't think breaking a working (even if flawed) part of the kernel is the right thing to do here. Regards Andre > -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists