Red Hat Bugzilla – Bug 127918
CAN-2004-0685 usb sparse fixes in 2.4
Last modified: 2007-11-30 17:07:02 EST
Back in October 2003 Arnaldo commited some fixes prior to 2.6 for some
leaking info to userspace in the usb drivers:
The corresponding changes have not been commited to 2.4, or included in
the previous sparse fixes. So I've assigned them CAN-2004-0685 (for 2.4
only, as they were fixed before 2.6.0). Treat as public.
Now fixed upstream, see
Created attachment 103320 [details]
updated USB driver data leak patch
Pete, I'll take care of this in the next U4 build, since Mark
was kind enough to post a patch to rhkernel-list (15-Jul-2004).
Mark, I'm dropping 2 of the original patch hunks because they
are unnecessary (in view of the strncpy() fixes made in U2),
and I've tweaked the remaining 3 hunks to zero only the
unassigned data fields.
The changes in comment #2 have just been committed to the RHEL3 U4
patch pool this evening (in kernel version 2.4.21-20.2.EL).
The fix for this problem has also been committed to the RHEL3 E4
patch pool this evening (in kernel version 2.4.21-20.0.1.EL).