Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 50fee1de authored by Eugene Teo's avatar Eugene Teo Committed by David S. Miller
Browse files

net: amend the fix for SO_BSDCOMPAT gsopt infoleak 



The fix for CVE-2009-0676 (upstream commit df0bca04) is incomplete. Note
that the same problem of leaking kernel memory will reappear if someone
on some architecture uses struct timeval with some internal padding (for
example tv_sec 64-bit and tv_usec 32-bit) --- then, you are going to
leak the padded bytes to userspace.

Signed-off-by: default avatarEugene Teo <eugeneteo@kernel.sg>
Reported-by: default avatarMikulas Patocka <mpatocka@redhat.com>
Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
parent ebe47d47

net/core/sock.c

+1 −1
Original line number Diff line number Diff line
@@ -696,7 +696,7 @@ int sock_getsockopt(struct socket *sock, int level, int optname, 
	if (len < 0)

		return -EINVAL;



	v.val = 0;

	memset(&v, 0, sizeof(v));



	switch(optname) {

	case SO_DEBUG: