| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 04 May 2014 23:46:30 +0200 From: Yann Droneaud <ydroneaud@...eya.com> To: Dan Carpenter <dan.carpenter@...cle.com> Cc: Steve Wise <swise@...lsio.com>, Roland Dreier <roland@...nel.org>, Sean Hefty <sean.hefty@...el.com>, Hal Rosenstock <hal.rosenstock@...il.com>, linux-rdma@...r.kernel.org, kernel-janitors@...r.kernel.org, netdev@...r.kernel.org, davem@...emloft.net, roland@...estorage.com, dm@...lsio.com, leedom@...lsio.com, santosh@...lsio.com, kumaras@...lsio.com, nirranjan@...lsio.com, hariprasad@...lsio.com, Steve Wise <swise@...ngridcomputing.com> Subject: Re: [patch] RDMA/cxgb4: info leak in c4iw_alloc_ucontext() Hi, Le samedi 03 mai 2014 à 02:56 +0300, Dan Carpenter a écrit : > On Fri, Mar 28, 2014 at 11:27:48AM +0100, Yann Droneaud wrote: > > Unfortunately, it's not the only structure which has this problem. I'm > > currently preparing a report on this issue for this driver (cxgb4) and > > another. > > > > This information leak is still present in linux-next. These days we > count those things as security vulnerabilities with CVEs and everything. > > When is it likely to get fixed? > Thanks for the reminder. The patches were waiting for some times in my patch queue, I failed to provide them earlier. BTW, I've taken time during the week end to complete them. They should be available on linux-rdma@...r.kernel.org. See http://marc.info/?i=cover.1399216475.git.ydroneaud@opteya.com Regards. -- Yann Droneaud OPTEYA -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists