The patch titled
/fs/proc/: 'larger than buffer size' memory accessed by clear_user()
has been added to the -mm tree. Its filename is
fs-proc-larger-than-buffer-size-memory.patch
See http://www.zip.com.au/~akpm/linux/patches/stuff/added-to-mm.txt to find
out what to do about this
------------------------------------------------------
Subject: /fs/proc/: 'larger than buffer size' memory accessed by clear_user()
From: Adam B. Jerome <abj@xxxxxxxxxx>
Address a potential 'larger than buffer size' memory access by
clear_user(). Without this patch, this call to clear_user() can attempt to
clear too many (tsz) bytes resulting in a wrong (-EFAULT) return code by
read_kcore().
Signed-off-by: Adam B. Jerome <abj@xxxxxxxxxx>
Signed-off-by: Andrew Morton <akpm@xxxxxxxx>
---
fs/proc/kcore.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff -puN fs/proc/kcore.c~fs-proc-larger-than-buffer-size-memory fs/proc/kcore.c
--- a/fs/proc/kcore.c~fs-proc-larger-than-buffer-size-memory
+++ a/fs/proc/kcore.c
@@ -382,7 +382,7 @@ read_kcore(struct file *file, char __use
*/
if (n) {
if (clear_user(buffer + tsz - n,
- tsz - n))
+ n))
return -EFAULT;
}
} else {
_
Patches currently in -mm which might be from abj@xxxxxxxxxx are
fs-proc-larger-than-buffer-size-memory.patch
-
To unsubscribe from this list: send the line "unsubscribe mm-commits" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
