| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20161013.121229.1557386309718710932.davem@davemloft.net>
Date: Thu, 13 Oct 2016 12:12:29 -0400 (EDT)
From: David Miller <davem@...emloft.net>
To: dan.carpenter@...cle.com
Cc: moshe@...lanox.com, roopa@...ulusnetworks.com,
nicolas.dichtel@...nd.com, nikolay@...ulusnetworks.com,
edumazet@...gle.com, hannes@...essinduktion.org,
nogahf@...lanox.com, bblanco@...mgrid.com, netdev@...r.kernel.org,
kernel-janitors@...r.kernel.org
Subject: Re: [patch -next] net: rtnl: info leak in rtnl_fill_vfinfo()
From: Dan Carpenter <dan.carpenter@...cle.com>
Date: Thu, 13 Oct 2016 11:45:28 +0300
> The "vf_vlan_info" struct ends with a 2 byte struct hole so we have to
> memset it to ensure that no stack information is revealed to user space.
>
> Fixes: 79aab093a0b5 ('net: Update API for VF vlan protocol 802.1ad support')
> Signed-off-by: Dan Carpenter <dan.carpenter@...cle.com>
Applied, thanks Dan.
Powered by blists - more mailing lists