APPLIED: [CVE-2011-1160] char/tpm: Fix unitialized usage of data buffer
Tim Gardner
tim.gardner at canonical.com
Wed Jul 27 16:08:36 UTC 2011
On 07/27/2011 09:20 AM, Andy Whitcroft wrote:
> CVE-2011-1160
> This patch fixes information leakage to the userspace by
> initializing the data buffer to zero.
>
> The fix for this CVE has lucid and later via mainline and stable
> updates. Following this email are two patches, one for hardy, and one
> for lucid/fsl-imx51 and maverick/ti-omap4. The first is a simple
> backport of the mainline fix, the second a cherry-pick.
>
> Proposing for hardy, lucid/fsl-imx51, and maverick/ti-omap4.
>
> -apw
>
--
Tim Gardner tim.gardner at canonical.com
More information about the kernel-team
mailing list