[PATCH] arm/arm64: KVM: Feed initialized memory to MMIO accesses
Marc Zyngier
marc.zyngier at arm.com
Wed Feb 24 04:06:52 PST 2016
On 24/02/16 11:40, Christoffer Dall wrote:
> On Wed, Feb 17, 2016 at 03:34:20PM +0000, Marc Zyngier wrote:
>> On an MMIO access, we always copy the on-stack buffer info
>> the shared "run" structure, even if this is a read access.
>> This ends up leaking up to 8 bytes of uninitialized memory
>> into userspace.
>
> I think it only leaks 'len' bytes to userspace ;)
>
>>
>> An obvious fix for this one is to only perform the copy if
>> this is an actual write.
>
> Reviewed-by: Christoffer Dall <christoffer.dall at linaro.org>
Thanks. I've pushed this onto master, with a view of sending a PR to
Paolo this evening (hopefully the last one for this cycle).
M.
--
Jazz is not dead. It just smells funny...
More information about the linux-arm-kernel
mailing list