[PATCH] off-by-1 in kernel/power/main.c There's an off-by-1 in kernel/power/main.c:state_store() ... if your kernel just happens to have some non-zero data at pm_states[PM_SUSPEND_MAX] (i.e. one past the end of the array) then it'll let you write anything you want to /sys/power/state and in response the box will enter S5. Signed-off-by: dean gaudet <dean@arctic.org> Acked-by: Pavel Machek <pavel@ucw.cz> Signed-off-by: Andrew Morton <akpm@osdl.org> Signed-off-by: Linus Torvalds <torvalds@osdl.org>

commit: 47bb789973fed504e4711ec34e63b84e6cbfb4e8 [log] [tgz]
author: dean gaudet <dean@arctic.org> Thu Apr 27 18:39:17 2006 -0700
committer: Linus Torvalds <torvalds@g5.osdl.org> Fri Apr 28 08:33:46 2006 -0700
tree: 2f617a73244a93d4b5b92236b6f809bf36912db5
parent: 37e53db8aa233c65142d63b496277bf5be9c0ade [diff]
diff --git a/kernel/power/main.c b/kernel/power/main.c
index ee371f5..a6d9ef4 100644
--- a/kernel/power/main.c
+++ b/kernel/power/main.c

@@ -272,7 +272,7 @@
 		if (*s && !strncmp(buf, *s, len))
 			break;
 	}
-	if (*s)
+	if (state < PM_SUSPEND_MAX && *s)
 		error = enter_state(state);
 	else
 		error = -EINVAL;
commit	47bb789973fed504e4711ec34e63b84e6cbfb4e8	[log] [tgz]
author	dean gaudet <dean@arctic.org>	Thu Apr 27 18:39:17 2006 -0700
committer	Linus Torvalds <torvalds@g5.osdl.org>	Fri Apr 28 08:33:46 2006 -0700
tree	2f617a73244a93d4b5b92236b6f809bf36912db5
parent	37e53db8aa233c65142d63b496277bf5be9c0ade [diff]