| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <aUJYSv6kqb9QauMI@westworld> Date: Wed, 17 Dec 2025 00:14:18 -0700 From: Kyle Zeng <zengyhkyle@...il.com> To: richardcochran@...il.com, andrew+netdev@...n.ch, davem@...emloft.net, edumazet@...gle.com, kuba@...nel.org, pabeni@...hat.com, netdev@...r.kernel.org Subject: [PATCH] ptp: prevent info leak to userspace Somehow the `memset` is lost after refactor, which leaks a lot of kernel stack data to userspace directly. This patch clears the reserved data region to prevent the info leak. Signed-off-by: Kyle Zeng <zengyhkyle@...il.com> --- drivers/ptp/ptp_chardev.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/drivers/ptp/ptp_chardev.c b/drivers/ptp/ptp_chardev.c index c61cf9edac48..06f71011fb04 100644 --- a/drivers/ptp/ptp_chardev.c +++ b/drivers/ptp/ptp_chardev.c @@ -195,6 +195,8 @@ static long ptp_clock_getcaps(struct ptp_clock *ptp, void __user *arg) if (caps.adjust_phase) caps.max_phase_adj = ptp->info->getmaxphase(ptp->info); + memset(caps.rsv, 0, sizeof(caps.rsv)); + return copy_to_user(arg, &caps, sizeof(caps)) ? -EFAULT : 0; } -- 2.43.0
Powered by blists - more mailing lists