[PATCH] x86_64: Check for bad elf entry address (CVE-2006-0741)

Fixes a local DOS on Intel systems that lead to an endless recursive fault. AMD machines don't seem to be affected. Signed-off-by: Suresh Siddha <suresh.b.siddha@intel.com> Signed-off-by: Andi Kleen <ak@suse.de> Signed-off-by: Chris Wright <chrisw@sous-sol.org>

[PATCH] x86_64: Check for bad elf entry address (CVE-2006-0741)
Fixes a local DOS on Intel systems that lead to an endless recursive fault. AMD machines don't seem to be affected. Signed-off-by: Suresh Siddha <suresh.b.siddha@intel.com> Signed-off-by: Andi Kleen <ak@suse.de> Signed-off-by: Chris Wright <chrisw@sous-sol.org>
5a62d340 · Suresh Siddha · Chris Wright · 94069fb3 · 5a62d340
Commit 5a62d340 authored Feb 26, 2006 by Suresh Siddha Committed by Chris Wright Mar 01, 2006
Show whitespace changes
Inline Side-by-side

Showing with 5 additions and 0 deletions

fs/binfmt_elf.c fs/binfmt_elf.c +5 -0

No files found.
--- a/fs/binfmt_elf.c
+++ b/fs/binfmt_elf.c
@@ -932,6 +932,11 @@ static int load_elf_binary(struct linux_binprm * bprm, struct pt_regs * regs)
 		kfree(elf_interpreter);
 	} else {
 		elf_entry = loc->elf_ex.e_entry;
+		if (BAD_ADDR(elf_entry)) {
+			send_sig(SIGSEGV, current, 0);
+			retval = -ENOEXEC; /* Nobody gets to see this, but.. */
+			goto out_free_dentry;
+		}
 	}

 	kfree(elf_phdata);