|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [Xen-changelog] [linux-2.6.18-xen] CVE-2008-0600: Fix exploitable hole in vmsplice() syscall.
# HG changeset patch
# User Keir Fraser <keir.fraser@xxxxxxxxxx>
# Date 1202727927 0
# Node ID 08e85e79c65d0316bfda5e77e8a0dc7ab9ca181a
# Parent 90fbf541d772e9df4e7a4be3ed667d9bac5412c0
CVE-2008-0600: Fix exploitable hole in vmsplice() syscall.
Fix is Al Viro's suggested patch for RHEL5.
Signed-off-by: Keir Fraser <keir.fraser@xxxxxxxxxx>
---
fs/splice.c | 3 +++
1 files changed, 3 insertions(+)
diff -r 90fbf541d772 -r 08e85e79c65d fs/splice.c
--- a/fs/splice.c Mon Feb 11 10:19:25 2008 +0000
+++ b/fs/splice.c Mon Feb 11 11:05:27 2008 +0000
@@ -1141,6 +1141,9 @@ static int get_iovec_page_array(const st
if (unlikely(!base))
break;
+ if (unlikely(!access_ok(VERIFY_READ, base, len)))
+ break;
+
/*
* Get this base offset and number of pages, then map
* in the user pages.
_______________________________________________
Xen-changelog mailing list
Xen-changelog@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-changelog
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |