| 1 |
On 12/20/14 09:43, Paige Thompson wrote: |
| 2 |
> On 12/20/14 09:40, Jiri Kosina wrote: |
| 3 |
>> On Sat, 20 Dec 2014, Jiri Kosina wrote: |
| 4 |
>> |
| 5 |
>>>> yes the hid_sony driver is buggy and the hardening makes it visible. It |
| 6 |
>>>> passes structures on stack (as parameters to hid_hw_raw_request() to |
| 7 |
>>>> HID/USB as DMA-able buffers. These structures must be allocated via |
| 8 |
>>>> kmalloc() or USB allocation primitives. |
| 9 |
>>> This has already been fixed in Linus' tree for 3.9-rc1. |
| 10 |
>> 3.19-rc1, sorry for the typo. The commit in question was 9b2b5c9a79. |
| 11 |
>> |
| 12 |
> Hahaha, I was about to say... |
| 13 |
> |
| 14 |
> Interesting! Thanks again everyone for your help I really appreciate it. |
| 15 |
> |
| 16 |
> -Paige |
| 17 |
> |
| 18 |
|
| 19 |
Well and it looks like I am SOL until grsec gets a version bump, lol. |
| 20 |
Otherwise I was about to add an ebuild in my overlay for it. I'm kind of |
| 21 |
looking forward to it actually, I want to check out nftables... not that |
| 22 |
I couldn't just grab 3.19 sources and compile it I just don't want to |
| 23 |
leave hardened-land I guess. |
| 24 |
|
| 25 |
|
| 26 |
https://grsecurity.net/test/grsecurity-3.0-3.17.7-201412170700.patch |
| 27 |
|
| 28 |
PS: Anyone have any idea how grsec versioning works? will they start |
| 29 |
supporting the 3.19 branch anytime soon? |
Archives