oss-sec mailing list archives
CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c
From: Jonathan Salwan <jonathan.salwan () gmail com>
Date: Mon, 25 Nov 2013 12:12:16 +0000
Hello, The Genlock driver does not properly initialize all members of a structure before copying it to user space. This allows a local attacker to obtain potentially sensitive information from kernel stack memory via ioctl system calls. Upstream fixes: https://www.codeaurora.org/cgit/quic/la/kernel/msm/commit/drivers/base/genlock.c?id=e3c43027bdb59f03eec7ead0a01c77e4bf801625&h=jb_3.2.3 Could you please assign a CVE id for this issue? Thanks, - Jonathan
Current thread:
- CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Jonathan Salwan (Nov 25)
- Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Kurt Seifried (Nov 25)
- RE: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Christey, Steven M. (Nov 25)
- Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Seth Arnold (Nov 25)
- Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Ramon de C Valle (Nov 25)
- RE: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Christey, Steven M. (Nov 25)
- Re: CVE request: Kernel MSM - Memory leak in drivers/base/genlock.c Kurt Seifried (Nov 25)