microsoft
/
WSL2-Linux-Kernel
зеркало из https://github.com/microsoft/WSL2-Linux-Kernel.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
WSL2-Linux-Kernel/drivers/misc
История
Hagar Gamal Halim Hemdan 95ac3e773a vmci: prevent speculation leaks by sanitizing event in event_deliver() 
commit 8003f00d895310d409b2bf9ef907c56b42a4e0f4 upstream.

Coverity spotted that event_msg is controlled by user-space,
event_msg->event_data.event is passed to event_deliver() and used
as an index without sanitization.

This change ensures that the event index is sanitized to mitigate any
possibility of speculative information leaks.

This bug was discovered and resolved using Coverity Static Analysis
Security Testing (SAST) by Synopsys, Inc.

Only compile tested, no access to HW.

Fixes: 1d990201f9 ("VMCI: event handling implementation.")
Cc: stable <stable@kernel.org>
Signed-off-by: Hagar Gamal Halim Hemdan <hagarhem@amazon.com>
Link: https://lore.kernel.org/stable/20231127193533.46174-1-hagarhem%40amazon.com
Link: https://lore.kernel.org/r/20240430085916.4753-1-hagarhem@amazon.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 		2024-07-05 09:14:20 +02:00
..
altera-stapl
bcm-vk
c2port
cardreader misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to probe 2023-10-06 13:18:21 +02:00
cb710
cxl cxl: Fix refcount leak in cxl_calc_capp_routing 2022-12-31 13:14:35 +01:00
echo
eeprom eeprom: at24: fix memory corruption race condition 2024-05-17 11:50:44 +02:00
genwqe
habanalabs habanalabs/gaudi: mask constant value before cast 2022-08-25 11:40:36 +02:00
ibmasm
lis3lv02d
lkdtm drivers: lkdtm: fix clang -Wformat warning 2024-02-23 08:54:59 +01:00
mei mei: me: release irq in mei_me_pci_resume error path 2024-07-05 09:14:14 +02:00
ocxl ocxl: fix pci device refcount leak when calling get_function_0() 2022-12-31 13:14:29 +01:00
pvpanic misc/pvpanic-pci: register attributes via pci_driver 2024-07-05 09:14:10 +02:00
sgi-gru misc: sgi-gru: fix use-after-free error in gru_set_context_option, gru_fault and gru_handle_user_call_os 2022-12-31 13:14:29 +01:00
sgi-xp
ti-st misc: st_core: Do not call kfree_skb() under spin_lock_irqsave() 2023-11-20 11:08:25 +01:00
uacce uacce: Handle parent device removal or parent driver module rmmod 2022-08-25 11:40:34 +02:00
vmw_vmci vmci: prevent speculation leaks by sanitizing event in event_deliver() 2024-07-05 09:14:20 +02:00
Kconfig
Makefile
ad525x_dpot-i2c.c
ad525x_dpot-spi.c
ad525x_dpot.c
ad525x_dpot.h
apds990x.c
apds9802als.c
atmel-ssc.c
bh1770glc.c
cs5535-mfgpt.c
ds1682.c
dummy-irq.c
dw-xdata-pcie.c
enclosure.c
fastrpc.c misc: fastrpc: Mark all sessions as invalid in cb_remove 2024-02-23 08:55:06 +01:00
gehc-achc.c
hi6421v600-irq.c
hisi_hikey_usb.c
hmc6352.c
hpilo.c
hpilo.h
ibmvmc.c
ibmvmc.h
ics932s401.c
isl29003.c
isl29020.c
kgdbts.c
lattice-ecp3-config.c
pch_phub.c
pci_endpoint_test.c misc: pci_endpoint_test: Add Device ID for R-Car S4-8 PCIe controller 2023-11-28 16:56:19 +00:00
phantom.c
qcom-coincell.c
sram-exec.c
sram.c
sram.h
tifm_7xx1.c misc: tifm: fix possible memory leak in tifm_7xx1_switch_media() 2022-12-31 13:14:29 +01:00
tifm_core.c
tsl2550.c
vmw_balloon.c misc: vmw_balloon: fix memory leak with using debugfs_lookup() 2023-03-11 13:57:38 +01:00
xilinx_sdfec.c