The patch titled
Subject: digsig: fix memory leakage in digsig_verify_rsa()
has been added to the -mm tree. Its filename is
digsig-fix-memory-leakage-in-digsig_verify_rsa.patch
Before you just go and hit "reply", please:
a) Consider who else should be cc'ed
b) Prefer to cc a suitable mailing list as well
c) Ideally: find the original patch on the mailing list and do a
reply-to-all to that, adding suitable additional cc's
*** Remember to use Documentation/SubmitChecklist when testing your code ***
The -mm tree is included into linux-next and is updated
there every 3-4 working days
------------------------------------------------------
From: YOSHIFUJI Hideaki <[email protected]>
Subject: digsig: fix memory leakage in digsig_verify_rsa()
digsig_verify_rsa() does not free kmalloc'ed buffer returned by
mpi_get_buffer().
Signed-off-by: YOSHIFUJI Hideaki <[email protected]>
Signed-off-by: Dmitry Kasatkin <[email protected]>
Cc: <[email protected]>
Signed-off-by: Andrew Morton <[email protected]>
---
lib/digsig.c | 2 ++
1 file changed, 2 insertions(+)
diff -puN lib/digsig.c~digsig-fix-memory-leakage-in-digsig_verify_rsa
lib/digsig.c
--- a/lib/digsig.c~digsig-fix-memory-leakage-in-digsig_verify_rsa
+++ a/lib/digsig.c
@@ -162,6 +162,8 @@ static int digsig_verify_rsa(struct key
memset(out1, 0, head);
memcpy(out1 + head, p, l);
+ kfree(p);
+
err = pkcs_1_v1_5_decode_emsa(out1, len, mblen, out2, &len);
if (err)
goto err;
_
Patches currently in -mm which might be from [email protected] are
linux-next.patch
digsig-fix-memory-leakage-in-digsig_verify_rsa.patch
--
To unsubscribe from this list: send the line "unsubscribe stable" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
