Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / 194cce96dd91c7f7b65d743a32a7f9b8c8796d93
commit194cce96dd91c7f7b65d743a32a7f9b8c8796d93[log] [tgz]
authorJeron Susan <jeron.susan@hi-p.com>Wed Nov 23 15:56:13 2016 +0800
committerTeemu Hukkanen <teemu@fairphone.com>Fri Dec 16 18:57:46 2016 +0100
tree256e8ceb00904b018f1e8d91b63aa657f7174eda
parent8c6586dddcb771173acfc086b0958896a8ed4493 [diff]
FPII-2605 : Elevation of privilege vulnerability in kernel security subsystem (device specific) CVE-2015-7872 A-31253168

The key_gc_unused_keys function in security/keys/gc.c,
in the Linux kernel through 4.2.6,
allows local users to potentially execute code via crafted keyctl commands.
The fix is designed to add additional checks to make sure the destroy function is only called if the key was successfully instantiated to prevent the potential code execution.

Change-Id: Icb1d87e29112ef74e9a726960a6e89c878fd1bfc
1 file changed
tree: 256e8ceb00904b018f1e8d91b63aa657f7174eda
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. AndroidKernel.mk
  25. COPYING
  26. CREDITS
  27. Kbuild
  28. Kconfig
  29. MAINTAINERS
  30. Makefile
  31. README
  32. REPORTING-BUGS