oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE-2015-5706: kernel: Use-after-free in path lookup

From: Jan Kara <jack () suse cz>
Date: Mon, 17 Aug 2015 15:52:17 +0200
Hello,

when looking into a fix for above CVE (commit f15133df088 in Linux kernel
git tree) I found out that the commit description is wrong and the problem
wasn't introduced by commit 60545d0d4610 in 3.11 but only by commit
5e53084d7734 "path_init(): store the "base" pointer to file in nameidata
itself" in 3.19. So the fix doesn't have to backported all the way back to
3.11.

For detailed analysis feel free to see:
https://bugzilla.suse.com/show_bug.cgi?id=940339

                                                                Honza

-- 
Jan Kara <jack () suse com>
SUSE Labs, CR
Previous By Date Next
Previous By Thread Next

Current thread: