Begin forwarded message:
Date: Sun, 30 Jul 2017 05:13:08 +0000 From: bugzilla-dae...@bugzilla.kernel.org To: step...@networkplumber.org Subject: [Bug 196533] New: kernel stack infoleaks https://bugzilla.kernel.org/show_bug.cgi?id=196533 Bug ID: 196533 Summary: kernel stack infoleaks Product: Networking Version: 2.5 Kernel Version: 4.12.2 Hardware: All OS: Linux Tree: Mainline Status: NEW Severity: normal Priority: P1 Component: Other Assignee: step...@networkplumber.org Reporter: sohu0...@126.com Regression: No bug in net/irda/af_irda.c Sometimes irda_getsockopt() doesn't initialize all members of list field of irda_device_list struct. This structure is then copied to userland. It leads to leaking of contents of kernel stack memory. We have to initialize them to zero , or it will allows local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure https://github.com/torvalds/linux/pull/440 -- You are receiving this mail because: You are the assignee for the bug.
