• M
    [PATCH] raw_sendmsg DoS on 2.6 · 6d1cfe3f
    Mark J Cox 提交于
    Fix unchecked __get_user that could be tricked into generating a
    memory read on an arbitrary address.  The result of the read is not
    returned directly but you may be able to divine some information about
    it, or use the read to cause a crash on some architectures by reading
    hardware state.  CAN-2004-2492.
    
    Fix from Al Viro, ack from Dave Miller.
    Signed-off-by: NLinus Torvalds <torvalds@osdl.org>
    6d1cfe3f
raw.c 19.9 KB