arch · v2.6.13 · Upstream / linux-stable

[PATCH] mmaper_kern.c fixes [buffer overruns]

Al Viro authored 19 years ago

- copy_from_user() can fail; ->write() must check its return value.

 - severe buffer overruns both in ->read() and ->write() - lseek to the
   end (i.e.  to mmapper_size) and

	if (count + *ppos > mmapper_size)
		count = count + *ppos - mmapper_size;

   will do absolutely nothing.  Then it will call

	copy_to_user(buf,&v_buf[*ppos],count);

   with obvious results (similar for ->write()).

   Fixed by turning read to simple_read_from_buffer() and by doing
   normal limiting of count in ->write().

 - gratitious lock_kernel() in ->mmap() - it's useless there.

 - lots of gratuitous includes.
Signed-off-by: Al Viro <viro@parcelfarce.linux.theplanet.co.uk>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>

6a029a90

Name	Last commit	Last update
..
alpha	[PATCH] alpha spinlock code and bogus constraints	19 years ago
arm	[PATCH] arm: fix IXP4xx flash resource range	19 years ago
arm26	It wasn't just x86-64 that had hardcoded VM_FAULT_xxx numbers	19 years ago
cris	It wasn't just x86-64 that had hardcoded VM_FAULT_xxx numbers	19 years ago
frv	It wasn't just x86-64 that had hardcoded VM_FAULT_xxx numbers	19 years ago
h8300	[PATCH] Don't export machine_restart, machine_halt, or machine_power_off.	19 years ago
i386	[PATCH] i386: fix incorrect FP signal code	19 years ago
ia64	[PATCH] Export pcibios_bus_to_resource	19 years ago
m32r	[PATCH] missing exports on m32r	19 years ago
m68k	It wasn't just x86-64 that had hardcoded VM_FAULT_xxx numbers	19 years ago
m68knommu	[PATCH] Don't export machine_restart, machine_halt, or machine_power_off.	19 years ago
mips	[PATCH] mips: remove obsolete GIU driver for vr41xx	19 years ago
parisc	It wasn't just x86-64 that had hardcoded VM_FAULT_xxx numbers	19 years ago
ppc	[PATCH] ppc32 8xx: fix m8xx_ide_init() #ifdef	19 years ago
ppc64	[PATCH] ppc64: Export machine_power_off for therm_pm72 module	19 years ago
s390	[PATCH] broken inline asm on s390 (misuse of labels)	19 years ago
sh	[PATCH] SH: inotify and ioprio syscalls	19 years ago
sh64	[PATCH] SH64: inotify and ioprio syscalls	19 years ago
sparc	[SPARC]: Fix weak aliases	19 years ago
sparc64	[PATCH] Export pcibios_bus_to_resource	19 years ago
um	[PATCH] mmaper_kern.c fixes [buffer overruns]	19 years ago
v850	[PATCH] v850: Update PCI support	19 years ago
x86_64	[PATCH] x86_64: Tell VM about holes in nodes	19 years ago
xtensa	[PATCH] xtensa: use ssleep() instead of schedule_timeout()	19 years ago

GitLab

Menu

Download source code

Download this directory