ethtool: Use kcalloc instead of kmalloc for ethtool_get_strings

It seems that kernel memory can leak into userspace by a kmalloc, ethtool_get_strings, then copy_to_user sequence. Avoid this by using kcalloc to zero fill the copied buffer. Signed-off-by: N Joe Perches <joe@perches.com> Acked-by: N Ben Hutchings <ben@decadent.org.uk> Signed-off-by: N David S. Miller <davem@davemloft.net>

ethtool: Use kcalloc instead of kmalloc for ethtool_get_strings
It seems that kernel memory can leak into userspace by a kmalloc, ethtool_get_strings, then copy_to_user sequence. Avoid this by using kcalloc to zero fill the copied buffer. Signed-off-by: N Joe Perches <joe@perches.com> Acked-by: N Ben Hutchings <ben@decadent.org.uk> Signed-off-by: N David S. Miller <davem@davemloft.net>
077cb37f · Joe Perches · David S. Miller · ef41a2ce · 077cb37f
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

net/core/ethtool.c net/core/ethtool.c +1 -1

未找到文件。
--- a/net/core/ethtool.c
+++ b/net/core/ethtool.c
@@ -1284,7 +1284,7 @@ static int ethtool_get_strings(struct net_device *dev, void __user *useraddr)

 	gstrings.len = ret;

-	data = kmalloc(gstrings.len * ETH_GSTRING_LEN, GFP_USER);
+	data = kcalloc(gstrings.len, ETH_GSTRING_LEN, GFP_USER);
 	if (!data)
 		return -ENOMEM;