malhuda/msm-4.14
1
0
Fork 0
mirror of https://github.com/rd-stuffs/msm-4.14.git synced 2025-02-20 11:45:48 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
msm-4.14/drivers
History
Jinbum Park 7141f97cdd pktcdvd: Fix possible Spectre-v1 for pkt_devs 
[ Upstream commit 55690c07b44a82cc3359ce0c233f4ba7d80ba145 ]

User controls @dev_minor which to be used as index of pkt_devs.
So, It can be exploited via Spectre-like attack. (speculative execution)

This kind of attack leaks address of pkt_devs, [1]
It leads an attacker to bypass security mechanism such as KASLR.

So sanitize @dev_minor before using it to prevent attack.

[1] https://github.com/jinb-park/linux-exploit/
tree/master/exploit-remaining-spectre-gadget/leak_pkt_devs.c

Signed-off-by: Jinbum Park <jinb.park7@gmail.com>
Signed-off-by: Jens Axboe <axboe@kernel.dk>
Signed-off-by: Sasha Levin <alexander.levin@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2018-09-19 22:43:43 +02:00
..
accessibility
acpi
ACPI / scan: Initialize status to ACPI_STA_DEFAULT
2018-09-15 09:45:30 +02:00
amba
ARM: amba: Don't read past the end of sysfs "driver_override" buffer
2018-05-01 12:58:21 -07:00
android
android: binder: fix the race mmap and alloc_new_buf_locked
2018-09-19 22:43:35 +02:00
ata
ata: libahci: Correct setting of DEVSLP register
2018-09-19 22:43:41 +02:00
atm
atm: zatm: Fix potential Spectre v1
2018-07-22 14:28:43 +02:00
auxdisplay
auxdisplay: fix broken menu
2018-07-03 11:24:56 +02:00
base
PM / clk: signedness bug in of_pm_clk_add_clks()
2018-09-05 09:26:42 +02:00
bcma
block
pktcdvd: Fix possible Spectre-v1 for pkt_devs
2018-09-19 22:43:43 +02:00
bluetooth
Bluetooth: h5: Fix missing dependency on BT_HCIUART_SERDEV
2018-09-19 22:43:38 +02:00
bus
drivers/perf: arm-ccn: don't log to dmesg in event_init
2018-08-03 07:50:31 +02:00
cdrom
cdrom: Fix info leak/OOB read in cdrom_ioctl_drive_status
2018-09-05 09:26:42 +02:00
char
tpm: separate cmd_ready/go_idle from runtime_pm
2018-09-19 22:43:38 +02:00
clk
clk: rockchip: Add pclk_rkpwm_pmu to PMU critical clocks in rk3399
2018-09-15 09:45:32 +02:00
clocksource
clocksource/drivers/imx-tpm: Correct some registers operation flow
2018-06-21 04:02:40 +09:00
connector
cpufreq
cpufreq: governor: Avoid accessing invalid governor_data
2018-09-09 19:55:58 +02:00
cpuidle
cpuidle: powernv: Fix promotion from snooze if next state disabled
2018-07-03 11:24:51 +02:00
crypto
crypto: caam/qi - fix error path in xts setkey
2018-09-09 19:56:02 +02:00
dax
dev-dax: check_vma: ratelimit dev_info-s
2018-08-24 13:09:08 +02:00
dca
devfreq
dio
dma
dmaengine: k3dma: Off by one in k3_of_dma_simple_xlate()
2018-08-24 13:09:08 +02:00
dma-buf
dma-buf: remove redundant initialization of sg_table
2018-06-05 11:41:57 +02:00
edac
EDAC: Add missing MEM_LRDDR4 entry in edac_mem_types[]
2018-08-24 13:08:55 +02:00
eisa
extcon
extcon: Release locking when sending the notification of connector state
2018-09-09 19:55:56 +02:00
firewire
firmware
firmware: vpd: Fix section enabled flag on vpd_section_destroy
2018-09-19 22:43:40 +02:00
fmc
fpga
fpga-manager: altera-ps-spi: preserve nCONFIG state
2018-05-01 12:58:24 -07:00
fsi
gpio
gpio: ml-ioh: Fix buffer underwrite on probe error path
2018-09-19 22:43:42 +02:00
gpu
gpu: ipu-v3: default to id 0 on missing OF alias
2018-09-19 22:43:39 +02:00
hid
HID: add quirk for another PIXART OEM mouse used by HP
2018-09-15 09:45:35 +02:00
hsi
hv
Drivers: hv: vmbus: Cleanup synic memory free path
2018-09-19 22:43:40 +02:00
hwmon
hwmon: (nct6775) Fix potential Spectre v1
2018-09-05 09:26:40 +02:00
hwspinlock
hwtracing
intel_th: Use correct device when freeing buffers
2018-06-05 11:41:59 +02:00
i2c
i2c: aspeed: Add an explicit type casting for *get_clk_reg_val
2018-09-19 22:43:38 +02:00
ide
cdrom: do not call check_disk_change() inside cdrom_open()
2018-05-30 07:52:34 +02:00
idle
intel_idle: Graceful probe failure when MWAIT is disabled
2018-08-09 12:16:39 +02:00
iio
iio: ad9523: Fix return value for ad952x_store()
2018-09-09 19:55:56 +02:00
infiniband
RDMA/hns: Fix usage of bitmap allocation functions return values
2018-09-15 09:45:29 +02:00
input
Input: do not use WARN() in input_alloc_absinfo()
2018-09-15 09:45:30 +02:00
iommu
iommu/omap: Fix cache flushes on L2 table entries
2018-09-15 09:45:31 +02:00
ipack
irqchip
irqchip/bcm7038-l1: Hide cpu offline callback when building for !SMP
2018-09-15 09:45:29 +02:00
isdn
isdn: Disable IIOCDBGVAR
2018-08-22 07:46:11 +02:00
leds
lightnvm
lightnvm: pblk: free padded entries in write buffer
2018-09-15 09:45:35 +02:00
macintosh
macintosh/via-pmu: Add missing mmio accessors
2018-09-19 22:43:41 +02:00
mailbox
mailbox: xgene-slimpro: Fix potential NULL pointer dereference
2018-09-09 19:55:54 +02:00
mcb
md
md/raid5: fix data corruption of replacements after originals dropped
2018-09-19 22:43:39 +02:00
media
media: camss: csid: Configure data type and decode format properly
2018-09-19 22:43:39 +02:00
memory
memory: tegra: Apply interrupts mask per SoC
2018-08-03 07:50:38 +02:00
memstick
message
scsi: mptfusion: Add bounds check in mptctl_hp_targetinfo()
2018-05-25 16:17:47 +02:00
mfd
mfd: sm501: Set coherent_dma_mask when creating subdevices
2018-09-15 09:45:28 +02:00
misc
misc: ti-st: Fix memory leak in the error path of probe()
2018-09-19 22:43:39 +02:00
mmc
mmc: renesas_sdhi_internal_dmac: fix #define RST_RESERVED_BITS
2018-09-09 19:55:53 +02:00
mtd
mtd: dataflash: Use ULL suffix for 64-bit constants
2018-08-24 13:09:04 +02:00
mux
net
net: mvneta: fix mtu change on port without link
2018-09-19 22:43:42 +02:00
nfc
NFC: pn533: Fix wrong GFP flag usage
2018-08-24 13:09:06 +02:00
ntb
nubus
nvdimm
libnvdimm: fix ars_status output length calculation
2018-09-09 19:56:01 +02:00
nvme
nvme-pci: add a memory barrier to nvme_dbbuf_update_and_check_event
2018-09-05 09:26:36 +02:00
nvmem
nvmem: Don't let a NULL cell_id for nvmem_cell_get() crash us
2018-08-24 13:09:14 +02:00
of
of: platform: stop accessing invalid dev in of_platform_device_destroy
2018-07-03 11:24:52 +02:00
oprofile
parisc
parisc/pci: Switch LBA PCI bus from Hard Fail to Soft Fail mode
2018-05-30 07:52:28 +02:00
parport
pci
switchtec: Fix Spectre v1 vulnerability
2018-09-19 22:43:37 +02:00
pcmcia
PCMCIA / PM: Avoid noirq suspend aborts during suspend-to-idle
2018-05-30 07:52:39 +02:00
perf
drivers/perf: xgene_pmu: Fix IOB SLOW PMU parser error
2018-08-24 13:08:59 +02:00
phy
phy: phy-mtk-tphy: use auto instead of force to bypass utmi signals
2018-08-15 18:12:48 +02:00
pinctrl
pinctrl/amd: only handle irq if it is pending and unmasked
2018-09-19 22:43:42 +02:00
platform
platform/x86: asus-nb-wmi: Add keymap entry for lid flip action on UX360
2018-09-15 09:45:28 +02:00
pnp
power
power: generic-adc-battery: check for duplicate properties copied from iio channels
2018-09-05 09:26:42 +02:00
powercap
pps
ps3
ptp
ptp: fix missing break in switch
2018-07-25 11:25:10 +02:00
pwm
pwm: meson: Fix mux clock names
2018-09-15 09:45:27 +02:00
rapidio
ras
regulator
regulator: Don't return or expect -errno from of_map_mode()
2018-08-03 07:50:40 +02:00
remoteproc
remoteproc: qcom: Fix potential device node leaks
2018-06-21 04:02:48 +09:00
reset
rpmsg
rpmsg: core: add support to power domains for devices
2018-09-19 22:43:41 +02:00
rtc
rtc: omap: fix potential crash on power off
2018-09-09 19:55:57 +02:00
s390
s390/dasd: fix panic for failed online processing
2018-09-15 09:45:30 +02:00
sbus
scsi
scsi: 3ware: fix return 0 on the error path of probe
2018-09-19 22:43:42 +02:00
sfi
sh
sn
soc
soc: imx: gpc: restrict register range for regmap access
2018-08-24 13:09:19 +02:00
spi
spi: cadence: Change usleep_range() to udelay(), for atomic context
2018-09-09 19:55:53 +02:00
spmi
ssb
staging
irda: Only insert new objects into the global database via setsockopt
2018-09-15 09:45:36 +02:00
target
scsi: target: fix __transport_register_session locking
2018-09-19 22:43:39 +02:00
tc
tee
tee: check shm references are consistent in offset/size
2018-06-21 04:02:54 +09:00
thermal
thermal: exynos: fix setting rising_threshold for Exynos5433
2018-08-03 07:50:37 +02:00
thunderbolt
tty
tty: rocket: Fix possible buffer overwrite on register_PCI
2018-09-19 22:43:40 +02:00
uio
uio: potential double frees if __uio_register_device() fails
2018-09-19 22:43:40 +02:00
usb
usb: dwc3: core: Fix ULPI PHYs and prevent phy_get/ulpi_init during suspend/resume
2018-09-15 09:45:35 +02:00
uwb
vfio
vfio/type1: Fix task tracking for QEMU vCPU hotplug
2018-08-03 07:50:23 +02:00
vhost
vhost: correctly check the iova range when waking virtqueue
2018-09-15 09:45:25 +02:00
video
fb: fix lost console when the user unplugs a USB adapter
2018-09-09 19:56:01 +02:00
virt
virtio
virtio: pci-legacy: Validate queue pfn
2018-09-15 09:45:27 +02:00
vlynq
vme
w1
1wire: family module autoload fails because of upper/lower case mismatch.
2018-07-03 11:24:47 +02:00
watchdog
watchdog: da9063: Fix updating timeout value
2018-08-03 07:50:24 +02:00
xen
xen/balloon: fix balloon initialization for PVH Dom0
2018-09-15 09:45:30 +02:00
zorro
zorro: Set up z->dev.dma_mask for the DMA API
2018-05-30 07:52:30 +02:00
Kconfig
Makefile