Re: CVE-2016-7097 causes acl leak

From: Greg KH
Date: Sun Dec 11 2016 - 15:35:53 EST

Next message: Greg KH: "Re: [kernel-hardening] [PATCH] siphash: add cryptographically secure hashtable function"
Previous message: David Miller: "[GIT] Networking"
Next in thread: Cong Wang: "Re: CVE-2016-7097 causes acl leak"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Dec 05, 2016 at 09:16:31AM -0800, Mark Salyzyn wrote:
> Commit 073931017b49d9458aa351605b43a7e34598caef has several occurrences of
> an acl leak.
>
> posix_acl_update_mode(inose, &mode, &acl);
>
> . . .
>
> posix_acl_release(acl);
>
>
> acl is NULLed in posix_acl_update_mode to signal caller to not update the
> acl; but because it is nulled, it is never released.

Any reason you didn't cc: the authors of that patch and the correct
mailing list for it (hint, use scripts/get_maintainer.pl on the
patch...)

Try that and see what happens...

thanks,

greg k-h

Next message: Greg KH: "Re: [kernel-hardening] [PATCH] siphash: add cryptographically secure hashtable function"
Previous message: David Miller: "[GIT] Networking"
Next in thread: Cong Wang: "Re: CVE-2016-7097 causes acl leak"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]