| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 08 Aug 2019 11:03:30 -0700 (PDT)
From: David Miller <davem@...emloft.net>
To: oneukum@...e.com
Cc: netdev@...r.kernel.org, wg@...ndegger.com, mkl@...gutronix.de,
linux-can@...r.kernel.org
Subject: Re: [PATCH] pcan_usb_fd: zero out the common command buffer
From: Oliver Neukum <oneukum@...e.com>
Date: Thu, 8 Aug 2019 11:28:25 +0200
> Lest we leak kernel memory to a device we better zero out buffers.
>
> Reported-by: syzbot+513e4d0985298538bf9b@...kaller.appspotmail.com
> Signed-off-by: Oliver Neukum <oneukum@...e.com>
Please CC: the CAN subsystem maintainers, as this is clearly listed in the
MAINTAINERS file.
Thank you.
> ---
> drivers/net/can/usb/peak_usb/pcan_usb_fd.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
> diff --git a/drivers/net/can/usb/peak_usb/pcan_usb_fd.c b/drivers/net/can/usb/peak_usb/pcan_usb_fd.c
> index 34761c3a6286..47cc1ff5b88e 100644
> --- a/drivers/net/can/usb/peak_usb/pcan_usb_fd.c
> +++ b/drivers/net/can/usb/peak_usb/pcan_usb_fd.c
> @@ -841,7 +841,7 @@ static int pcan_usb_fd_init(struct peak_usb_device *dev)
> goto err_out;
>
> /* allocate command buffer once for all for the interface */
> - pdev->cmd_buffer_addr = kmalloc(PCAN_UFD_CMD_BUFFER_SIZE,
> + pdev->cmd_buffer_addr = kzalloc(PCAN_UFD_CMD_BUFFER_SIZE,
> GFP_KERNEL);
> if (!pdev->cmd_buffer_addr)
> goto err_out_1;
> --
> 2.16.4
>
Powered by blists - more mailing lists