| commit | 0d1335f51d535fa036c5cddccd1779cab5f2f143 | |
| author | Greg Banks <gnb@sgi.com> | |
| Tue, 20 Feb 2007 23:14:36 +0000 (21 00:14 +0100) | ||
| committer | Adrian Bunk <bunk@stusta.de> | |
| Tue, 20 Feb 2007 23:14:36 +0000 (21 00:14 +0100) | ||
| tree | 4c9b4b606e3b443428b876f47da5b2be88128802 | treesnapshot (tar.gz zip) |
| parent | af8f3558878c9894b8ed08d9273c6357aca313aa | commitdiff |
Fix a free-wrong-pointer bug in nfs/acl server (CVE-2007-0772)
Due to type confusion, when an nfsacl verison 2 'ACCESS' request
finishes and tries to clean up, it calls fh_put on entiredly the
wrong thing and this can cause an oops.
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Due to type confusion, when an nfsacl verison 2 'ACCESS' request
finishes and tries to clean up, it calls fh_put on entiredly the
wrong thing and this can cause an oops.
Signed-off-by: Adrian Bunk <bunk@stusta.de>
| fs/nfsd/nfs2acl.c | diffblobblamehistory |