iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/drivers
History
Kees Cook cea4dcfdad iscsi-target: fix heap buffer overflow on error 
If a key was larger than 64 bytes, as checked by iscsi_check_key(), the
error response packet, generated by iscsi_add_notunderstood_response(),
would still attempt to copy the entire key into the packet, overflowing
the structure on the heap.

Remote preauthentication kernel memory corruption was possible if a
target was configured and listening on the network.

CVE-2013-2850

Signed-off-by: Kees Cook <keescook@chromium.org>
Cc: stable@vger.kernel.org
Signed-off-by: Nicholas Bellinger <nab@linux-iscsi.org>
2013-05-30 18:07:54 -07:00
..
accessibility
acpi
ACPI / scan: Fix memory leak on acpi_scan_init_hotplug() error path
2013-05-15 21:42:24 +02:00
amba
ata
drivers/ata: don't check resource with devm_ioremap_resource
2013-05-12 15:19:46 +02:00
atm
atm: he: use mdelay instead of large udelay constants
2013-04-29 13:26:48 -04:00
auxdisplay
base
PM: Avoid calling kfree() under spinlock in dev_pm_put_subsys_data()
2013-05-12 14:04:40 +02:00
bcma
- Lots of cleanups from Artem, including deletion of some obsolete drivers
2013-05-09 10:15:46 -07:00
block
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/sage/ceph-client
2013-05-15 13:36:19 -07:00
bluetooth
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
2013-05-01 14:08:52 -07:00
bus
bus: mvebu: fix mistake in PCIe window target attribute for Kirkwood
2013-04-11 17:05:37 +00:00
cdrom
block_device_operations->release() should return void
2013-05-07 02:16:21 -04:00
char
Merge branch 'devm_no_resource_check' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
2013-05-18 10:54:54 -07:00
clk
ARM: late Exynos multiplatform changes
2013-05-07 11:28:42 -07:00
clocksource
ARM: late Exynos multiplatform changes
2013-05-07 11:28:42 -07:00
connector
cpufreq
drivers/cpufreq: don't check resource with devm_ioremap_resource
2013-05-18 11:54:39 +02:00
cpuidle
cpuidle: add maintainer entry
2013-04-26 22:30:25 +02:00
crypto
Merge git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2013-05-02 14:53:12 -07:00
dca
devfreq
dio
dma
drivers/dma: don't check resource with devm_ioremap_resource
2013-05-18 11:54:55 +02:00
edac
Two small EDAC fixes.
2013-05-09 10:11:08 -07:00
eisa
PCI changes for the v3.10 merge window:
2013-04-29 09:30:25 -07:00
extcon
Removal of GENERIC_GPIO for v3.10
2013-05-09 09:59:16 -07:00
firewire
IEEE 1394 (FireWire) subsystem changes:
2013-05-09 10:11:48 -07:00
firmware
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2013-05-01 17:51:54 -07:00
gpio
drivers/gpio: don't check resource with devm_ioremap_resource
2013-05-18 11:55:19 +02:00
gpu
Merge branch 'devm_no_resource_check' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
2013-05-18 10:54:54 -07:00
hid
HID: debug: fix RCU preemption issue
2013-05-06 13:07:33 +02:00
hsi
hv
Merge branch 'x86-paravirt-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2013-04-30 08:41:21 -07:00
hwmon
hwmon: (tmp401) Drop redundant safety on cache lifetime
2013-05-19 08:19:29 -07:00
hwspinlock
A single patch from Vincent extending OMAP's hwspinlock support to OMAP5.
2013-05-07 14:01:27 -07:00
i2c
drivers/i2c/busses: don't check resource with devm_ioremap_resource
2013-05-18 11:55:32 +02:00
ide
block_device_operations->release() should return void
2013-05-07 02:16:21 -04:00
idle
Merge branch 'release' of git://git.kernel.org/pub/scm/linux/kernel/git/lenb/linux
2013-05-11 15:23:17 -07:00
iio
infiniband
ib_srpt: Call target_sess_cmd_list_set_waiting during shutdown_session
2013-05-29 21:30:46 -07:00
input
Removal of GENERIC_GPIO for v3.10
2013-05-09 09:59:16 -07:00
iommu
IOMMU Updates for Linux v3.10
2013-05-06 14:59:13 -07:00
ipack
irqchip
ARM: late Exynos multiplatform changes
2013-05-07 11:28:42 -07:00
isdn
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2013-05-01 17:51:54 -07:00
leds
Removal of GENERIC_GPIO for v3.10
2013-05-09 09:59:16 -07:00
lguest
lguest: clear cached last cpu when guest_set_pgd() called.
2013-05-08 10:49:18 +09:30
macintosh
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/benh/powerpc
2013-05-02 10:16:16 -07:00
mailbox
md
dm thin: fix metadata dev resize detection
2013-05-19 18:57:50 +01:00
media
Merge branch 'i2c/for-next' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
2013-05-02 14:38:53 -07:00
memory
drivers/memory: don't check resource with devm_ioremap_resource
2013-05-18 11:55:52 +02:00
memstick
block_device_operations->release() should return void
2013-05-07 02:16:21 -04:00
message
Merge branch 'for-3.10/core' of git://git.kernel.dk/linux-block
2013-05-08 10:13:35 -07:00
mfd
drivers/mfd: don't check resource with devm_ioremap_resource
2013-05-18 11:55:53 +02:00
misc
drivers/misc: don't check resource with devm_ioremap_resource
2013-05-18 11:55:54 +02:00
mmc
Merge branch 'fixes' of git://git.linaro.org/people/rmk/linux-arm
2013-05-15 13:37:54 -07:00
mtd
drivers/mtd/nand: don't check resource with devm_ioremap_resource
2013-05-18 11:55:55 +02:00
net
Merge branch 'devm_no_resource_check' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
2013-05-18 10:54:54 -07:00
nfc
NFC: pn544: Add MEI physical layer
2013-04-16 00:39:41 +02:00
ntb
NTB: Multiple NTB client fix
2013-05-15 10:58:22 -07:00
nubus
nubus: Kill nubus_proc_detach_device()
2013-05-04 14:47:26 -04:00
of
Device tree bug fixes and documentation updates for v3.10
2013-05-18 10:46:50 -07:00
oprofile
parisc
parisc: fix partly 16/64k PAGE_SIZE boot
2013-05-06 23:08:32 +02:00
parport
pci
PCI updates for v3.10:
2013-05-09 10:21:44 -07:00
pcmcia
pinctrl
Pinctrl fixes for the v3.10 series:
2013-05-20 07:59:46 -07:00
platform
- Artem's removal of dead code continues (RPX, MBX860)
2013-05-10 09:09:47 -07:00
pnp
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/benh/powerpc
2013-05-02 10:16:16 -07:00
power
For 3.10 we have a few new MFD drivers for:
2013-05-05 17:36:20 -07:00
pps
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2013-05-01 17:51:54 -07:00
ps3
ptp
ptp: dynamic allocation of PHC char devices
2013-04-12 18:22:45 -04:00
pwm
drivers/pwm: don't check resource with devm_ioremap_resource
2013-05-18 11:55:58 +02:00
rapidio
regulator
Removal of GENERIC_GPIO for v3.10
2013-05-09 09:59:16 -07:00
remoteproc
This pull request contains:
2013-05-07 14:04:56 -07:00
reset
reset: NULL deref on allocation failure
2013-04-12 10:26:24 +02:00
rpmsg
A small pull request consisting of:
2013-05-07 14:02:00 -07:00
rtc
Merge branch 'devm_no_resource_check' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
2013-05-18 10:54:54 -07:00
s390
Merge branch 'for-3.10/core' of git://git.kernel.dk/linux-block
2013-05-08 10:13:35 -07:00
sbus
scsi
target: Remove unused wait_for_tasks bit in target_wait_for_sess_cmds
2013-05-20 21:44:10 -07:00
sfi
sh
sn
spi
Merge branch 'devm_no_resource_check' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
2013-05-18 10:54:54 -07:00
ssb
- Lots of cleanups from Artem, including deletion of some obsolete drivers
2013-05-09 10:15:46 -07:00
ssbi
staging
drivers/staging/nvec: don't check resource with devm_ioremap_resource
2013-05-18 11:57:29 +02:00
target
iscsi-target: fix heap buffer overflow on error
2013-05-30 18:07:54 -07:00
tc
thermal
drivers/thermal: don't check resource with devm_ioremap_resource
2013-05-18 11:57:30 +02:00
tty
Merge git://git.infradead.org/users/eparis/audit
2013-05-11 14:29:11 -07:00
uio
usb
drivers/usb/phy: don't check resource with devm_ioremap_resource
2013-05-18 11:58:00 +02:00
uwb
uwb: rename random32() to prandom_u32()
2013-04-29 18:28:43 -07:00
vfio
vfio updates for v3.10
2013-05-02 14:02:32 -07:00
vhost
Add missing module license tag to vring helpers.
2013-05-08 10:49:03 +09:30
video
drivers/video/omap2/dss: don't check resource with devm_ioremap_resource
2013-05-18 11:58:02 +02:00
virt
virtio
vlynq
vme
w1
drivers/w1/masters: don't check resource with devm_ioremap_resource
2013-05-18 11:58:03 +02:00
watchdog
drivers/watchdog: don't check resource with devm_ioremap_resource
2013-05-18 11:58:04 +02:00
xen
xen: Fixed assignment error in if statement
2013-05-20 14:14:48 -04:00
zorro
proc: Supply PDE attribute setting accessor functions
2013-05-01 17:29:18 -04:00
Kconfig
ARM: arm-soc driver changes for 3.10
2013-05-04 12:31:18 -07:00
Makefile
ARM: arm-soc driver changes for 3.10
2013-05-04 12:31:18 -07:00