Re: [CHECKER] Probable security holes in 2.6.5

From: Chris Wright
Date: Fri Apr 16 2004 - 17:22:34 EST

Next message: Chen, Kenneth W: "RE: Kill off hugepage_vma()"
Previous message: Matt Domsch: "Re: Fix edd driver dereferencing before pointer checks."
In reply to: Jeff Garzik: "Re: [CHECKER] Probable security holes in 2.6.5"
Next in thread: Jeff Garzik: "Re: [CHECKER] Probable security holes in 2.6.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Jeff Garzik (jgarzik@xxxxxxxxx) wrote:
> The proper solution is for e1000 to use ethtool_ops.

I think Steve Hemminger is cobbling something together ATM. Note that a
mechnical switchover would have ->get_regs_len() return 32 (ints), while it
only fills in 26, leaking those last 24 bytes.

cheers,
-chris
--
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Chen, Kenneth W: "RE: Kill off hugepage_vma()"
Previous message: Matt Domsch: "Re: Fix edd driver dereferencing before pointer checks."
In reply to: Jeff Garzik: "Re: [CHECKER] Probable security holes in 2.6.5"
Next in thread: Jeff Garzik: "Re: [CHECKER] Probable security holes in 2.6.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]