[PATCH] riscv: process: fix kernel info leakage
patchwork-bot+linux-riscv at kernel.org
patchwork-bot+linux-riscv at kernel.org
Thu Nov 10 14:50:16 PST 2022
Hello:
This patch was applied to riscv/linux.git (fixes)
by Palmer Dabbelt <palmer at rivosinc.com>:
On Sat, 29 Oct 2022 19:34:50 +0800 you wrote:
> thread_struct's s[12] may contain random kernel memory content, which
> may be finally leaked to userspace. This is a security hole. Fix it
> by clearing the s[12] array in thread_struct when fork.
>
> As for kthread case, it's better to clear the s[12] array as well.
>
> Fixes: 7db91e57a0ac ("RISC-V: Task implementation")
> Signed-off-by: Jisheng Zhang <jszhang at kernel.org>
>
> [...]
Here is the summary with links:
- riscv: process: fix kernel info leakage
https://git.kernel.org/riscv/c/6510c78490c4
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
More information about the linux-riscv
mailing list