oss-security - CVE request: kernel: applicom: fix an unchecked user ioctl range

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [thread-next>] [day] [month] [year] [list]

Message-ID: <28fa9c5e0812092232m11792d2cmf5681387a41bb3db@mail.gmail.com>
Date: Wed, 10 Dec 2008 14:32:28 +0800
From: "Eugene Teo" <eugeneteo@...nel.sg>
To: oss-security@...ts.openwall.com
Cc: "Steven M. Christey" <coley@...us.mitre.org>
Subject: CVE request: kernel: applicom: fix an unchecked user ioctl range

Steve, can you please assign a CVE name. Thanks.

http://bugzilla.kernel.org/show_bug.cgi?id=11408
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a7be18d

---
>From a7be18d436f0c7007794965e5af29fa1ffff1e05 Mon Sep 17 00:00:00 2001
From: Alan Cox <alan@...hat.com>
Date: Mon, 13 Oct 2008 10:45:17 +0100
Subject: [PATCH] applicom: Fix an unchecked user ioctl range and an error return

Closes bug #11408 by checking the card index range for command 0
Fixes the ioctl to return ENOTTY which is correct for unknown ioctls

Signed-off-by: Alan Cox <alan@...hat.com>
Signed-off-by: Linus Torvalds <torvalds@...ux-foundation.org>

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.