Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 81766741fe1eee3884219e8daaf03f466f2ed52f
commit81766741fe1eee3884219e8daaf03f466f2ed52f[log] [tgz]
authorJan Beulich <JBeulich@novell.com>Mon Oct 26 15:20:29 2009 +0000
committerIngo Molnar <mingo@elte.hu>Mon Oct 26 16:23:26 2009 +0100
tree0afde40852f608ed101d03a83ef49ef74ccbb434
parent72ed7de74e8f0fad0d8e567ae1f987b740accb3f [diff]
x86-64: Fix register leak in 32-bit syscall audting

Restoring %ebp after the call to audit_syscall_exit() is not
only unnecessary (because the register didn't get clobbered),
but in the sysenter case wasn't even doing the right thing: It
loaded %ebp from a location below the top of stack (RBP <
ARGOFFSET), i.e. arbitrary kernel data got passed back to user
mode in the register.

Signed-off-by: Jan Beulich <jbeulich@novell.com>
Acked-by: Roland McGrath <roland@redhat.com>
Cc: <stable@kernel.org>
LKML-Reference: <4AE5CC4D020000780001BD13@vpn.id2.novell.com>
Signed-off-by: Ingo Molnar <mingo@elte.hu>
1 file changed
tree: 0afde40852f608ed101d03a83ef49ef74ccbb434
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. MAINTAINERS
  28. Makefile
  29. README
  30. REPORTING-BUGS