Google Git
Sign in
android / kernel / msm.git / eb8997fc22f0d329012878d4c48d56a111f46cf2
commiteb8997fc22f0d329012878d4c48d56a111f46cf2[log] [tgz]
authorSunil Khatri <sunilkh@codeaurora.org>Wed Jun 22 14:45:31 2016 +0530
committerCarol_Jiang <carol_jiang@asus.com>Fri Sep 09 17:57:25 2016 +0800
tree5c1caf2bd836717a088cdf7475b17ff8b6bd1977
parentdf99c2e77cdcc6b1e335270181c636ddddb1161c [diff]
ashmem: Validate ashmem memory with fops pointer

CVE-2016-5340

Validate the ashmem memory entry against f_op pointer
rather then comparing its name with path of the dentry.

This is to avoid any invalid access to ashmem area in cases
where some one deliberately set the dentry name to /ashmem.

Change-Id: I74e50cd244f68cb13009cf2355e528485f4de34b
Signed-off-by: Sunil Khatri <sunilkh@codeaurora.org>
Reviewed-on: http://mcrd1-22-pc.corpnet.asus/code-review/master/250139
Reviewed-by: steve yang <steve2_yang@asus.com>
Tested-by: steve yang <steve2_yang@asus.com>
Reviewed-by: Carol_Jiang <carol_jiang@asus.com>
1 file changed
tree: 5c1caf2bd836717a088cdf7475b17ff8b6bd1977
  1. android/
  2. arch/
  3. block/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .gitignore
  24. .mailmap
  25. AndroidKernel.mk
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS