[PATCH 0/1] CVE-2010-4082
Brad Figg
brad.figg at canonical.com
Fri Feb 4 17:26:39 UTC 2011
Following this email will be 1 patch associated with this CVE. The patch
applies cleanly to Karmic. Natty, Maverick and Lucid have already received
this patch as part of upstream stable commits (or just regular upstream
commits). This issue does not exist for Dapper or Hardy.
drivers/video/via/ioctl.c: prevent reading uninitialized stack memory, CVE-2010-4082
CVE-2010-4082
BugLink: http://bugs.launchpad.net/bugs/712744
The VIAFB_GET_INFO device ioctl allows unprivileged users to read 246
bytes of uninitialized stack memory, because the "reserved" member of
the viafb_ioctl_info struct declared on the stack is not altered or
zeroed before being copied back to the user. This patch takes care of
it.
Dan Rosenberg (1):
drivers/video/via/ioctl.c: prevent reading uninitialized stack
memory, CVE-2010-4082
drivers/video/via/ioctl.c | 2 ++
1 files changed, 2 insertions(+), 0 deletions(-)
More information about the kernel-team
mailing list