arch/arm/kernel/sys_oabi-compat.c · a8c6faad66e667109ffc6be43158e97eda3c3f75 · Kirill Smelkov / linux

arm: oabi compat: add missing access checks · a8c6faad

Dave Weinstein authored Jul 28, 2016

BugLink: http://bugs.launchpad.net/bugs/1614560

commit 7de24996 upstream.

Add access checks to sys_oabi_epoll_wait() and sys_oabi_semtimedop().
This fixes CVE-2016-3857, a local privilege escalation under
CONFIG_OABI_COMPAT.
Reported-by: Chiachih Wu <wuchiachih@gmail.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Nicolas Pitre <nico@linaro.org>
Signed-off-by: Dave Weinstein <olorin@google.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Kamal Mostafa <kamal@canonical.com>

a8c6faad

sys_oabi-compat.c 11.9 KB

Replace sys_oabi-compat.c