Re: [kernel-hardening] 2015 kernel CVEs

From: Greg KH
Date: Tue Jan 19 2016 - 12:54:21 EST

Next message: Theodore Ts'o: "Re: [kernel-hardening] 2015 kernel CVEs"
Previous message: Yury Norov: "Re: [PATCH v6 20/21] all: s390: make compat wrappers the generic solution"
In reply to: Ben Hutchings: "Re: [kernel-hardening] 2015 kernel CVEs"
Next in thread: Ben Hutchings: "Re: [kernel-hardening] 2015 kernel CVEs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jan 19, 2016 at 04:32:08PM +0000, Ben Hutchings wrote:
> As for USB descriptors, I'm somewhat more hopeful about hardening. At
> the same time, it seems like it should be practical to put more low-
> performance USB drivers into userspace.

What drivers do we currently have in the kernel that should/could be
done in userspace instead? I'll gladly drop them from the tree.

And yes, we need to do better about handling crazy USB descriptors, I
think the majority of this work is already done, but it takes
hand-auditing to verify it :(

thanks,

greg k-h

Next message: Theodore Ts'o: "Re: [kernel-hardening] 2015 kernel CVEs"
Previous message: Yury Norov: "Re: [PATCH v6 20/21] all: s390: make compat wrappers the generic solution"
In reply to: Ben Hutchings: "Re: [kernel-hardening] 2015 kernel CVEs"
Next in thread: Ben Hutchings: "Re: [kernel-hardening] 2015 kernel CVEs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]