|
Message-ID: <alpine.LFD.2.03.1304231819510.21349@erqung.pbz> Date: Tue, 23 Apr 2013 18:22:25 +0530 (IST) From: P J P <ppandit@...hat.com> To: oss security list <oss-security@...ts.openwall.com> cc: cve-assign@...re.org Subject: Re: Re: Linux kernel: more net info leak fixes for v3.9 +-- On Tue, 23 Apr 2013, Mathias Krause wrote --+ | net/socket.c, I guess. The copy_from_user is followed by verify_iovec() that | sets msg_name to "addr" -- a kernel stack variable. Ah yep, right! | Please ask your colleagues at RedHat for any further explanations of | the code. AFAIK, oss-sec is no kernel hacker newbie forum ;) Yep, okay. Sorry to bother you. Thanks so much. -- Prasad J Pandit / Red Hat Security Response Team DB7A 84C5 D3F9 7CD1 B5EB C939 D048 7860 3655 602B
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.