git.openpandora.org / pandora-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 862184f) | patch
[ARM] 3117/1: nwfpe kernel memory info leak
authorLennert Buytenhek <buytenh@wantstofly.org>
Mon, 7 Nov 2005 21:12:07 +0000 (21:12 +0000)
committerRussell King <rmk+kernel@arm.linux.org.uk>
Mon, 7 Nov 2005 21:12:07 +0000 (21:12 +0000)
commit06c03cac9487555478c7d80065ebf7818bf6fd06
tree1a03ff9ae347f40c11d0e3eee790a1b88ff29cc1tree | snapshot
parent862184fe013146a0d9654a5598c5a2691747541ccommit | diff
[ARM] 3117/1: nwfpe kernel memory info leak

Patch from Lennert Buytenhek

The routine that nwfpe uses for converting floats/doubles to
extended precision fails to zero two bytes of kernel stack.  This
is not immediately obvious, as the floatx80 structure has 16 bits
of implicit padding (by design.)  These two bytes are copied to
userspace when an stfe is emulated, causing a possible info leak.

Make the padding explicit and zero it out in the relevant places.

Signed-off-by: Lennert Buytenhek <buytenh@wantstofly.org>
Signed-off-by: Russell King <rmk+kernel@arm.linux.org.uk>
arch/arm/nwfpe/fpopcode.c diff | blob | history
arch/arm/nwfpe/softfloat-specialize diff | blob | history
arch/arm/nwfpe/softfloat.c diff | blob | history
arch/arm/nwfpe/softfloat.h diff | blob | history
Pandora Kernel Repository