d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
267c52fc98
freebsd-nq/sys
History
Konstantin Belousov 267c52fc98 Fix several issues with parsing the notes for ELF objects. 
Badly formed ELF note may cause the caclulated pointer to the next note
to point both after the note region, that was checked in the code, but
also to point before the region, that was not checked [1]. Remember the
first note location in note0 and leap out if the note is not between
note0 and note_end.

In the similar way, badly formed note may cause infinite loop by
pointing next note into the same or previous note. Guard against this by
limiting amount of loop iterations by arbitrary choosen big number.

For clarity, check the calculated note alignment in each iteration.

Reported by:	Chris Palmer <chris noncombatant org> [1]
PR:	kern/132886
Reviewed and tested by:	dchagin
MFC after:	3 days
2009-03-22 13:42:41 +00:00
..
amd64 In general, the kernel virtual address of the pml4 page table page that is 2009-03-22 04:32:05 +00:00
arm Remove the uscanner(4) driver, this follows the removal of the kernel scanner 2009-03-19 20:33:26 +00:00
boot Oops, fix the previous change. 2009-03-20 13:03:33 +00:00
bsm Merge OpenBSM 1.1 beta 1 from OpenBSM vendor branch to head, both 2009-03-02 13:29:18 +00:00
cam GCC attacks! 2009-02-16 18:02:32 +00:00
cddl The zfs_get_xattrdir() function is used to find the extended attribute 2009-03-18 16:19:44 +00:00
compat Some NDIS USB drivers try to call URB funcs like URB_FUNCTION_VENDOR_xxx 2009-03-18 02:38:35 +00:00
conf Remove the uscanner(4) driver, this follows the removal of the kernel scanner 2009-03-19 20:33:26 +00:00
contrib For all files including net/vnet.h directly include opt_route.h and 2009-02-27 14:12:05 +00:00
crypto identify routine takes driver_t *, not device_t *. 2009-02-05 19:30:28 +00:00
ddb Prefer prototypes to k&r definitions. 2009-03-09 13:32:19 +00:00
dev NO_INQUIRY is wrong for this device. Alternatively, if it is right, 2009-03-22 13:17:46 +00:00
fs Do not use null_bypass for VOP_ISLOCKED, directly call default 2009-03-18 13:54:35 +00:00
gdb
geom Be more explicit and complain if kernel dumps are perfomed on unsupported 2009-03-22 00:29:48 +00:00
gnu Fix two issues with bufdaemon, often causing the processes to hang in 2009-03-16 15:39:46 +00:00
i386 Eliminate the recomputation of pcb_cr3 from cpu_set_upcall(). The 2009-03-22 02:33:48 +00:00
ia64 Add AT_EXECPATH ELF auxinfo entry type. The value's a_ptr is a pointer 2009-03-17 12:50:16 +00:00
isa Allow syscons to work on amd64 and i386 without any hints: 2009-03-05 19:10:17 +00:00
kern Fix several issues with parsing the notes for ELF objects. 2009-03-22 13:42:41 +00:00
kgssapi Call svc_freereq() before returning from the service proc. 2008-11-12 15:31:05 +00:00
legacy/dev remove now-redunant cardbus attachment lines. 2009-03-09 13:25:34 +00:00
libkern Add memmove() to the kernel, making the kernel compile with Clang. 2009-02-28 16:21:25 +00:00
mips Add AT_EXECPATH ELF auxinfo entry type. The value's a_ptr is a pointer 2009-03-17 12:50:16 +00:00
modules Remove the uscanner(4) driver, this follows the removal of the kernel scanner 2009-03-19 20:33:26 +00:00
net Call the interface's if_ioctl from ifioctl(), if the protocol didn't 2009-03-20 13:41:23 +00:00
net80211 Remove leftover comment because we now use a flag to check for associd. 2009-03-19 18:45:37 +00:00
netatalk Remove local variable 'ddp' from DDP's attach and detach routines; they 2009-02-04 20:04:32 +00:00
netgraph Make Netgraph compile with Clang. 2009-03-03 18:47:33 +00:00
netinet Remove local in6_addr variables for local and foreign addresses in sysctl_drop, 2009-03-22 00:45:47 +00:00
netinet6 Introduce a number of changes to the MROUTING code. 2009-03-19 01:43:03 +00:00
netipsec Spelling fix in a comment 2009-03-20 09:12:01 +00:00
netipx Add missing "goto set_head" for SO_IPX_CHECKSUM; otherwise we fall through 2008-12-11 10:29:35 +00:00
netnatm Remove IFF_NEEDSGIANT, a compatibility infrastructure introduced 2009-03-15 14:21:05 +00:00
netncp
netsmb Implement device cloning for /dev/nsmb, the netsmb control pseudo-device. 2008-11-03 14:23:15 +00:00
nfs
nfs4client Expand the per-node access cache to cache permissions for multiple users. 2009-03-20 21:12:38 +00:00
nfsclient In nfs_request(), always exit using the nfsmout label once we're 2009-03-21 21:49:07 +00:00
nfsserver Fix an mbuf leak in the error path. 2009-03-19 14:13:18 +00:00
nlm Don't call svc_freereq() before svc_freeargs(). 2008-11-12 15:30:30 +00:00
opencrypto Fix return type for detach routine (should be int) 2009-02-05 17:43:12 +00:00
pc98 Remove the uscanner(4) driver, this follows the removal of the kernel scanner 2009-03-19 20:33:26 +00:00
pci intpm: minor enhancements 2009-03-16 16:15:14 +00:00
powerpc Remove the uscanner(4) driver, this follows the removal of the kernel scanner 2009-03-19 20:33:26 +00:00
rpc Use the correct creds when reconnecting so that we have enough privilege to 2009-02-05 11:48:10 +00:00
security - Correct logic in if statement - we want to allocate temporary buffer 2009-03-14 20:40:06 +00:00
sparc64 Revert r190105 so that removing options KDB but DDB or GDB being 2009-03-20 17:10:50 +00:00
sun4v - There's no need to wrap kdb_active and kdb_trap() in #ifdef KDB as 2009-03-19 20:46:51 +00:00
sys Supply AT_EXECPATH auxinfo entry to the interpreter, both for native and 2009-03-17 12:53:28 +00:00
tools Remove some unused and broken code that attempted to not invoke locking 2008-11-03 19:57:40 +00:00
ufs Fix two issues with bufdaemon, often causing the processes to hang in 2009-03-16 15:39:46 +00:00
vm Adjust some variables (mostly related to the buffer cache) that hold 2009-03-09 19:35:20 +00:00
xdr Add memmove() to the kernel, making the kernel compile with Clang. 2009-02-28 16:21:25 +00:00
xen Merge in support for Xen HVM on amd64 architecture. 2009-03-11 15:30:12 +00:00
Makefile Removal pccard directory requires removing it from the list of things 2009-02-15 18:19:24 +00:00