APPLIED: [CVE-2011-1162] scrub tpm data before free
tim.gardner at canonical.com
Mon Dec 5 18:24:40 UTC 2011
On 12/05/2011 09:18 AM, Andy Whitcroft wrote:
> char/tpm: zero buffer after copying to userspace
> The fix for this issue has hit lucid, oneiric and precise via mainline
> and stable. Following this email are three patches, one for hardy, one
> for lucid/fsl-imx51, maverick and maverick/ti-omap4, and one for natty
> and natty/ti-omap4. The hardy patch is a very minor backport, the other
> two are simple cherry-picks only differing in context.
> Proposing for hardy, lucid/fsl-imx51, maverick, maverick/ti-omap4, natty
> and natty/ti-omap4.
I agree with Seth that this driver has some race problems. Also, I think
the patch for this CVE might be incomplete. I'll send the maintainer a
patch or two.
Tim Gardner tim.gardner at canonical.com
More information about the kernel-team