fix a fencepost error in pipe_advance() - starfive-tech/linux.git - StarFive Tech Linux Kernel for VisionFive (JH7110) boards (mirror)

diff options

author	Al Viro <viro@zeniv.linux.org.uk>	2017-01-15 03:33:08 +0300
committer	Al Viro <viro@zeniv.linux.org.uk>	2017-01-15 03:50:41 +0300
commit	b9dc6f65bc5e232d1c05fe34b5daadc7e8bbf1fb (patch)
tree	ca221e796b274a6c909db003fcda215156aa4cc7 /.get_maintainer.ignore
parent	4d22c75d4c7b5c5f4bd31054f09103ee490878fd (diff)
download	linux-b9dc6f65bc5e232d1c05fe34b5daadc7e8bbf1fb.tar.xz

fix a fencepost error in pipe_advance()

The logics in pipe_advance() used to release all buffers past the new position failed in cases when the number of buffers to release was equal to pipe->buffers. If that happened, none of them had been released, leaving pipe full. Worse, it was trivial to trigger and we end up with pipe full of uninitialized pages. IOW, it's an infoleak. Cc: stable@vger.kernel.org # v4.9 Reported-by: "Alan J. Wylie" <alan@wylie.me.uk> Tested-by: "Alan J. Wylie" <alan@wylie.me.uk> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>

Diffstat (limited to '.get_maintainer.ignore')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: