]> git.karo-electronics.de Git - mv-sheeva.git/commit
projects / mv-sheeva.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3b97eed) | patch
Staging: sst: more dereferencing user pointers
authorDan Carpenter <error27@gmail.com>
Tue, 19 Oct 2010 05:57:04 +0000 (07:57 +0200)
committerGreg Kroah-Hartman <gregkh@suse.de>
Tue, 9 Nov 2010 21:30:48 +0000 (13:30 -0800)
commitbc704e31edc723a84c2469f26aa0279e1ddb948e
tree47d9c1b9675f303be6203beb46d533af288baa26tree | snapshot
parent3b97eed201376db6c4487fc846022eb4ffa7e1f9commit | diff
Staging: sst: more dereferencing user pointers

This is another patch about making a copy of the data into kernel space
before using it.  It is easy to trigger a kernel oops in the original
code.  If you passed a NULL to SNDRV_SST_SET_TARGET_DEVICE then it
called BUG_ON().  And SNDRV_SST_DRIVER_INFO would let you write the
information to arbitrary memory locations which is a security violation.

Signed-off-by: Dan Carpenter <error27@gmail.com>
Acked-by: Vinod Koul <vinod.koul@intel.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
drivers/staging/intel_sst/intel_sst_app_interface.c diff | blob | history
Linux for Marvell Sheeva based platforms