Bug_reply : Out of range ptr error in module indicates bug in slab.c

• Previous message: Mike Hearn: "Re: ptrace single-stepping change breaks Wine"
• In reply to: Arjan van de Ven: "Re: Bug : Out of range ptr error in module indicates bug in slab.c"
• Next in thread: Arjan van de Ven: "Re: Bug_reply : Out of range ptr error in module indicates bug in slab.c"
• Reply: Arjan van de Ven: "Re: Bug_reply : Out of range ptr error in module indicates bug in slab.c"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date:	Thu, 30 Dec 2004 04:13:10 -0800 (PST)
To: Arjan van de Ven <arjan@infradead.org>

 Hello,
     Thanks for ur help. The user will be changing
this using system calls like dup,dup2 etc. If I keep
track of all these modifications by intercepting all
those syscalls and use inode number for identifying
the structure uniquely, will it break?

Thanks,
selva

> nagendran wrote:
> > else {
> > new -> pipe_read_end = fdes[0];
> > new -> pipe_write_end = fdes[1];
>
> this is a bug; fdes is a USERSPACE pointer, you
> cannot directly access
> that from kernel space, you need to use
> copy_from_user() for that.
>
> And note, what you are doing is unreliable, since
> the user is capable of
> changing that information before you log it in your
> structure, so if you
> want to use the data you log for anything security
> related or for
> something that has to be accurate, it's broken...
>
> > while(temp != NULL)
> > {
> > kfree(temp);
> > temp = temp -> next;
> > }
>
> that is of course wrong; you free temp and THEN you
> access it!!
>
>
> -
> To unsubscribe from this list: send the line
> "unsubscribe linux-kernel" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at
> http://vger.kernel.org/majordomo-info.html
> Please read the FAQ at http://www.tux.org/lkml/
>

                
__________________________________
Do you Yahoo!?
Read only the mail you want - Yahoo! Mail SpamGuard.
http://promotions.yahoo.com/new_mail
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

• Previous message: Mike Hearn: "Re: ptrace single-stepping change breaks Wine"
• In reply to: Arjan van de Ven: "Re: Bug : Out of range ptr error in module indicates bug in slab.c"
• Next in thread: Arjan van de Ven: "Re: Bug_reply : Out of range ptr error in module indicates bug in slab.c"
• Reply: Arjan van de Ven: "Re: Bug_reply : Out of range ptr error in module indicates bug in slab.c"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: [still problems] Re: Slow internet access for 2.6.7bk15&16 ... >> More majordomo info at ... > Do you Yahoo!? ... > To unsubscribe from this list: ... (Linux-Kernel) Re: [still problems] Re: Slow internet access for 2.6.7bk15&16 ... >> the fix indicated by the below link has already ... >> Do you Yahoo!? ... >> More majordomo info at ... > To unsubscribe from this list: ... (Linux-Kernel) Re: how to turn off this function ... I turned it off by unchecking "visual bell". ... Read only the mail you want - Yahoo! ... Mail SpamGuard. ... To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list ... (Fedora) Re: Contribute - How to ... > if you are looking at embedded development on the ... >> Do you Yahoo!? ... >> More majordomo info at ... > To unsubscribe from this list: ... (Linux-Kernel) Re: command to check how long fedora has turned on? ... legal statement: http://www.uni-x.org/legal.html Fedora GNU/Linux Core 2 on Athlon kernel 2.6.9-1.6_FC2smp ... To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list ... Read only the mail you want - Yahoo! ... Mail SpamGuard. ... (Fedora)