CAN: Use inode instead of kernel address for /proc file
commit40521c939c106814166d9bc72f85e6aa5bfa868d
authorDan Rosenberg <drosenberg@vsecurity.com>
Sun, 26 Dec 2010 06:54:53 +0000 (26 06:54 +0000)
committerGreg Kroah-Hartman <gregkh@suse.de>
Thu, 14 Apr 2011 23:53:54 +0000 (14 16:53 -0700)
treeae66d287c456b6fed04bc6484e04dc22b4d5d80e
parent9d880cedb1727a53159a4e041c3ccf9f1dd7a4bc
CAN: Use inode instead of kernel address for /proc file

commit 9f260e0efa4766e56d0ac14f1aeea6ee5eb8fe83 upstream.

Since the socket address is just being used as a unique identifier, its
inode number is an alternative that does not leak potentially sensitive
information.

CC-ing stable because MITRE has assigned CVE-2010-4565 to the issue.

Signed-off-by: Dan Rosenberg <drosenberg@vsecurity.com>
Acked-by: Oliver Hartkopp <socketcan@hartkopp.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
Cc: Moritz Muehlenhoff <jmm@debian.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
net/can/bcm.c