CVE-2016-4470 keys: uninitialized variable crash (rhbz 1341716 1346626)
This commit is contained in:
parent
6a80877ca9
commit
0f872cd456
|
@ -0,0 +1,30 @@
|
||||||
|
From 82a50018782f84e733e718d4b24e1653d19333be Mon Sep 17 00:00:00 2001
|
||||||
|
From: Dan Carpenter <dan.carpenter@oracle.com>
|
||||||
|
Date: Wed, 15 Jun 2016 09:31:45 -0400
|
||||||
|
Subject: [PATCH] KEYS: potential uninitialized variable
|
||||||
|
|
||||||
|
If __key_link_begin() failed then "edit" would be uninitialized. I've
|
||||||
|
added a check to fix that.
|
||||||
|
|
||||||
|
Fixes: f70e2e06196a ('KEYS: Do preallocation for __key_link()')
|
||||||
|
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
|
||||||
|
---
|
||||||
|
security/keys/key.c | 2 +-
|
||||||
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
||||||
|
|
||||||
|
diff --git a/security/keys/key.c b/security/keys/key.c
|
||||||
|
index bd5a272f28a6..346fbf201c22 100644
|
||||||
|
--- a/security/keys/key.c
|
||||||
|
+++ b/security/keys/key.c
|
||||||
|
@@ -597,7 +597,7 @@ int key_reject_and_link(struct key *key,
|
||||||
|
|
||||||
|
mutex_unlock(&key_construction_mutex);
|
||||||
|
|
||||||
|
- if (keyring)
|
||||||
|
+ if (keyring && link_ret == 0)
|
||||||
|
__key_link_end(keyring, &key->index_key, edit);
|
||||||
|
|
||||||
|
/* wake up anyone waiting for a key to be constructed */
|
||||||
|
--
|
||||||
|
2.5.5
|
||||||
|
|
|
@ -633,6 +633,9 @@ Patch723: proc-prevent-stacking-filesystems-on-top.patch
|
||||||
Patch725: ecryptfs-forbid-opening-files-without-mmap-handler.patch
|
Patch725: ecryptfs-forbid-opening-files-without-mmap-handler.patch
|
||||||
Patch726: sched-panic-on-corrupted-stack-end.patch
|
Patch726: sched-panic-on-corrupted-stack-end.patch
|
||||||
|
|
||||||
|
#CVE-2016-4470 rhbz 1341716 1346626
|
||||||
|
Patch727: KEYS-potential-uninitialized-variable.patch
|
||||||
|
|
||||||
# END OF PATCH DEFINITIONS
|
# END OF PATCH DEFINITIONS
|
||||||
|
|
||||||
%endif
|
%endif
|
||||||
|
@ -2158,6 +2161,9 @@ fi
|
||||||
#
|
#
|
||||||
#
|
#
|
||||||
%changelog
|
%changelog
|
||||||
|
* Wed Jun 15 2016 Josh Boyer <jwboyer@fedoraproject.org>
|
||||||
|
- CVE-2016-4470 keys: uninitialized variable crash (rhbz 1341716 1346626)
|
||||||
|
|
||||||
* Tue Jun 14 2016 Peter Robinson <pbrobinson@fedoraproject.org>
|
* Tue Jun 14 2016 Peter Robinson <pbrobinson@fedoraproject.org>
|
||||||
- Enable Infiniband on ARM now we have HW
|
- Enable Infiniband on ARM now we have HW
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue