On 12/09/13 14:39, Josh Boyer wrote: > On Wed, Sep 11, 2013 at 3:56 PM, Benjamin Tissoires > <[email protected]> wrote: >> From: Kees Cook <[email protected]> >> >> This driver must validate the availability of the HID output report and >> its size before it can write LED states via buzz_set_leds(). This stops >> a heap overflow that is possible if a device provides a malicious HID >> output report: >> >> [ 108.171280] usb 1-1: New USB device found, idVendor=054c, idProduct=0002 >> ... >> [ 117.507877] BUG kmalloc-192 (Not tainted): Redzone overwritten >> >> CVE-2013-2890 >> >> Signed-off-by: Kees Cook <[email protected]> >> Cc: [email protected] >> Reviewed-by: Benjamin Tissoires <[email protected]> > > As far as I know, this should be Cc: [email protected] #3.11, correct? >
Yep, for this one, only 3.11 is impacted. Thanks Josh. And sorry for being to lazy to have added the proper tags :( Cheers, Benjamin -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to [email protected] More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
