remarkable-linux

History

Mathias Krause 1f86840f89 xfrm_user: fix info leak in copy_to_user_tmpl() The memory used for the template copy is a local stack variable. As struct xfrm_user_tmpl contains multiple holes added by the compiler for alignment, not initializing the memory will lead to leaking stack bytes to userland. Add an explicit memset(0) to avoid the info leak. Initial version of the patch by Brad Spengler. Cc: Brad Spengler <spender@grsecurity.net> Signed-off-by: Mathias Krause <minipli@googlemail.com> Acked-by: Steffen Klassert <steffen.klassert@secunet.com> Signed-off-by: David S. Miller <davem@davemloft.net>		2012-09-20 18:08:40 -04:00
..
9p
802
8021q	vlan: clean up vlan_dev_hard_start_xmit()	2012-08-14 14:33:32 -07:00
appletalk
atm	atm: fix info leak via getsockname()	2012-08-15 21:36:30 -07:00
ax25	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net	2012-07-19 11:17:30 -07:00
batman-adv	batman-adv: make batadv_test_bit() return 0 or 1 only	2012-09-19 15:49:53 -04:00
bluetooth	Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/linville/wireless into for-davem	2012-09-07 14:38:50 -04:00
bridge	netfilter: log: Fix log-level processing	2012-09-12 17:17:35 +02:00
caif	caif: move the dereference below the NULL test	2012-09-10 16:13:31 -04:00
can
ceph	libceph: avoid truncation due to racing banners	2012-08-21 15:55:27 -07:00
core	net/core: fix comment in skb_try_coalesce	2012-09-19 17:29:13 -04:00
dcb
dccp	dccp: fix info leak via getsockopt(DCCP_SOCKOPT_CCID_TX_INFO)	2012-08-15 21:36:31 -07:00
decnet	ipv4: Restore old dst_free() behavior.	2012-07-31 14:41:38 -07:00
dns_resolver
dsa
ethernet	ipx: move peII functions	2012-07-19 10:48:00 -07:00
ieee802154	6lowpan: Change byte order when storing/accessing to len field	2012-07-16 22:52:02 -07:00
ipv4	tcp: restore rcv_wscale in a repair mode (v2)	2012-09-20 17:49:58 -04:00
ipv6	ipv6: use DST_* macro to set obselete field	2012-09-18 15:57:04 -04:00
ipx	ipx: move peII functions	2012-07-19 10:48:00 -07:00
irda	irda: Fix typo in irda	2012-07-16 23:23:52 -07:00
iucv
key
l2tp	l2tp: fix a typo in l2tp_eth_dev_recv()	2012-09-04 15:54:55 -04:00
lapb
llc	llc: fix info leak via getsockname()	2012-08-15 21:36:31 -07:00
mac80211	Merge branch 'for-john' of git://git.kernel.org/pub/scm/linux/kernel/git/jberg/mac80211	2012-09-05 14:48:15 -04:00
mac802154	mac802154: sparse warnings: make symbols static	2012-07-12 07:54:45 -07:00
netfilter	netfilter: log: Fix log-level processing	2012-09-12 17:17:35 +02:00
netlabel
netlink	netlink: fix possible spoofing from non-root processes	2012-08-24 13:36:09 -04:00
netrom	netrom: copy_datagram_iovec can fail	2012-09-04 12:57:35 -04:00
nfc	Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/linville/wireless-next into for-davem	2012-07-20 12:30:48 -04:00
openvswitch	openvswitch: Fix FLOW_BUFSIZE definition.	2012-09-03 19:06:27 -07:00
packet	af_packet: match_fanout_group() can be static	2012-08-23 09:27:12 -07:00
phonet
rds	rds: set correct msg_namelen	2012-07-23 01:01:44 -07:00
rfkill
rose
rxrpc
sched	pkt_sched: fix virtual-start-time update in QFQ	2012-09-19 16:23:53 -04:00
sctp	sctp: Don't charge for data in sndbuf again when transmitting packet	2012-09-03 13:24:13 -04:00
sunrpc	NFS client bugfixes for Linux 3.6	2012-09-13 09:04:13 +08:00
tipc	tipc: remove print_buf and deprecated log buffer code	2012-07-13 19:34:43 -04:00
unix	af_netlink: force credentials passing [CVE-2012-3520]	2012-08-21 14:53:01 -07:00
wanrouter	wanmain: comparing array with NULL	2012-07-24 13:55:21 -07:00
wimax
wireless	Merge branch 'for-john' of git://git.kernel.org/pub/scm/linux/kernel/git/jberg/mac80211	2012-09-05 14:48:15 -04:00
x25
xfrm	xfrm_user: fix info leak in copy_to_user_tmpl()	2012-09-20 18:08:40 -04:00
compat.c	net: Fix references to out-of-scope variables in put_cmsg_compat()	2012-07-22 17:50:49 -07:00
Kconfig
Makefile
nonet.c
socket.c	Fix order of arguments to compat_put_time[spec\|val]	2012-09-05 18:34:13 -07:00
sysctl_net.c