oss-sec mailing list archives

Re: Re: Linux kernel: more net info leak fixes for v3.9

From: P J P <ppandit () redhat com>
Date: Mon, 22 Apr 2013 17:43:02 +0530 (IST)

  Hello,
+-- On Mon, 22 Apr 2013, cve-assign () mitre org wrote --+
| 9b3e617f3df53822345a8573b6d358f6b9e5ed87 CVE-2013-3222

Is the following call sequence correct..?

  recvmsg
   -> __sys_recvmsg
    -> sock_recvmsg_nosec/sock_recvmsg
     -> __sock_recvmsg_nosec
      -> sock->ops->recvmsg
       -> vcc_recvmsg

If yes, *msg seems to hold the user space msghdr values. (Just to confirm)

Thank you.
--
Prasad J Pandit / Red Hat Security Response Team
DB7A 84C5 D3F9 7CD1 B5EB  C939 D048 7860 3655 602B

Current thread:

Linux kernel: more net info leak fixes for v3.9 Mathias Krause (Apr 14)
- Re: Linux kernel: more net info leak fixes for v3.9 cve-assign (Apr 21)
  - Re: Re: Linux kernel: more net info leak fixes for v3.9 P J P (Apr 22)
    - Re: Re: Linux kernel: more net info leak fixes for v3.9 Mathias Krause (Apr 22)
    - Re: Re: Linux kernel: more net info leak fixes for v3.9 P J P (Apr 22)
    - Re: Re: Linux kernel: more net info leak fixes for v3.9 Mathias Krause (Apr 22)
    - Re: Re: Linux kernel: more net info leak fixes for v3.9 P J P (Apr 23)
  - Re: Re: Linux kernel: more net info leak fixes for v3.9 Greg KH (Apr 22)
    - Re: Re: Linux kernel: more net info leak fixes for v3.9 cve-assign (Apr 22)
    - Re: Re: Linux kernel: more net info leak fixes for v3.9 Greg KH (Apr 22)
    - Re: Re: Linux kernel: more net info leak fixes for v3.9 Petr Matousek (Apr 23)
  - Re: Re: Linux kernel: more net info leak fixes for v3.9 P J P (Apr 23)
    - Re: Re: Linux kernel: more net info leak fixes for v3.9 Mathias Krause (Apr 23)

(Thread continues...)