Google Git
Sign in
chromium / chromiumos / third_party / kernel / release-R47-7520.B-chromeos-3.8
commit13501cf72fdad101c8dd44c6c610b596f387a5cf[log] [tgz]
authorKevin Cernekee <cernekee@chromium.org>Tue Jan 19 20:28:03 2016
committerChromeOS bot <3su6n15k.default@developer.gserviceaccount.com>Wed Jan 20 22:58:38 2016
tree855436b2304e6600d1293916d2b7a3f4125611ce
parentbd75cef7ec35ca729f1eb59ceba34e5b7ea6b4f7 [diff]
CHROMIUM: KEYS: Fix refcount leak on duplicate name

This fixes CVE-2016-0728, which can lead to local privilege escalation.

BUG=chromium:579179
TEST=`./leak ; cat /proc/keys`

Change-Id: If8203696e3fc7afeccad2d58d72e8dc350adcfc1
Signed-off-by: Kevin Cernekee <cernekee@chromium.org>
Previous-Reviewed-on: https://chromium-review.googlesource.com/322269
(cherry picked from commit 06e45be08718d88d8ee6343cff4ff4d82c5d804e)
Reviewed-on: https://chromium-review.googlesource.com/322723
Reviewed-by: Matthew Dempsky <mdempsky@chromium.org>
1 file changed
tree: 855436b2304e6600d1293916d2b7a3f4125611ce
  1. arch/
  2. block/
  3. chromeos/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .gitignore
  24. .mailmap
  25. .scmversion
  26. COMMIT-QUEUE.ini
  27. COPYING
  28. CREDITS
  29. Kbuild
  30. Kconfig
  31. MAINTAINERS
  32. Makefile
  33. PRESUBMIT.cfg
  34. README
  35. REPORTING-BUGS