Re: [PATCH] fbdev: potential information leak in do_fb_ioctl()

From: Eric W. Biederman
Date: Thu Oct 31 2019 - 18:12:26 EST

Next message: Ben Hutchings: "Re: [PATCH 3.16 47/47] KVM: x86/vPMU: refine kvm_pmu err msg when event creation failed"
Previous message: Wolfram Sang: "Re: [PATCH] mmc: renesas_sdhi: add checks for pinctrl_lookup_state"
In reply to: Joe Perches: "Re: [PATCH] fbdev: potential information leak in do_fb_ioctl()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Joe Perches <joe@xxxxxxxxxxx> writes:

> On Wed, 2019-10-30 at 21:12 +0100, Andrea Righi wrote:
>> Then memset() + memcpy() is probably the best option,
>> since copying all those fields one by one looks quite ugly to me...
>
> A memset of an automatic before a memcpy to the same
> automatic is unnecessary.

You still need to guarantee that all of the holes in the
structure you are copying are initialized before you copy it.

Otherwise you are just changing which unitialized memory that
is being copied to userspace.

Which is my concern with your very simple suggestion.

Eric

Next message: Ben Hutchings: "Re: [PATCH 3.16 47/47] KVM: x86/vPMU: refine kvm_pmu err msg when event creation failed"
Previous message: Wolfram Sang: "Re: [PATCH] mmc: renesas_sdhi: add checks for pinctrl_lookup_state"
In reply to: Joe Perches: "Re: [PATCH] fbdev: potential information leak in do_fb_ioctl()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]