oss-sec mailing list archives

CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure

From: Timo Warns <warns () pre-sense de>
Date: Tue, 15 Mar 2011 09:31:44 +0100

The kernel automatically evaluates partition tables of storage devices.
The code for evaluating OSF partitions (in fs/partitions/osf.c)
contains a bug that leaks data from kernel heap memory to userspace for
certain corrupted OSF partitions.

See http://www.spinics.net/lists/mm-commits/msg82737.html for a patch.

Cheers, Timo

-- 
Dr. Timo Warns                               warns () pre-sense de
                                  Tel. +49 - 40 - 244 2407 - 16
                                  Fax  +49 - 40 - 244 2407 - 24
PRESENSE Technologies GmbH            Sachsenstr. 5, D-20097 HH
                                         USt-IdNr.: DE263765024
Geschäftsführer/Managing Directors       AG Hamburg, HRB 107844
Till Dörges           Jürgen Sander              Axel Theilmann

Current thread:

CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure Timo Warns (Mar 15)
- Re: CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure Josh Bressers (Mar 15)