armbian/linux
0
0
Fork 0
mirror of https://github.com/armbian/linux.git synced 2026-01-06 10:13:00 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
faf8db2e2247ac49104653eddfca2e1eeb7efeea
linux/fs/proc
History
Kirill A. Shutemov e11b708502 pagemap: do not leak physical addresses to non-privileged userspace 
commit ab676b7d6f upstream.

As pointed by recent post[1] on exploiting DRAM physical imperfection,
/proc/PID/pagemap exposes sensitive information which can be used to do
attacks.

This disallows anybody without CAP_SYS_ADMIN to read the pagemap.

[1] http://googleprojectzero.blogspot.com/2015/03/exploiting-dram-rowhammer-bug-to-gain.html

[ Eventually we might want to do anything more finegrained, but for now
  this is the simple model.   - Linus ]

Signed-off-by: Kirill A. Shutemov <kirill.shutemov@linux.intel.com>
Acked-by: Konstantin Khlebnikov <khlebnikov@openvz.org>
Acked-by: Andy Lutomirski <luto@amacapital.net>
Cc: Pavel Emelyanov <xemul@parallels.com>
Cc: Andrew Morton <akpm@linux-foundation.org>
Cc: Mark Seaborn <mseaborn@chromium.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: mancha security <mancha1@zoho.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2015-04-19 10:10:51 +02:00
..
array.c
CAPABILITIES: remove undefined caps from all processes
2014-09-17 09:03:57 -07:00
base.c
userns: Add a knob to disable setgroups on a per user namespace basis
2015-01-08 09:58:16 -08:00
cmdline.c
consoles.c
cpuinfo.c
devices.c
fd.c
procfs: add ability to plug in auxiliary fdinfo providers
2012-12-17 17:15:27 -08:00
fd.h
proc: Move proc_fd() to fs/proc/fd.h
2013-05-01 17:29:39 -04:00
generic.c
procfs: fix race between symlink removals and traversals
2015-03-18 13:22:32 +01:00
inode.c
procfs: fix race between symlink removals and traversals
2015-03-18 13:22:32 +01:00
internal.h
procfs: fix race between symlink removals and traversals
2015-03-18 13:22:32 +01:00
interrupts.c
Kconfig
kcore.c
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2013-05-01 17:51:54 -07:00
kmsg.c
kmsg: honor dmesg_restrict sysctl on /dev/kmsg
2013-06-12 16:29:44 -07:00
loadavg.c
Makefile
mm, vmalloc: move get_vmalloc_info() to vmalloc.c
2013-04-29 15:54:33 -07:00
meminfo.c
mm, vmalloc: move get_vmalloc_info() to vmalloc.c
2013-04-29 15:54:33 -07:00
namespaces.c
proc: Split the namespace stuff out into linux/proc_ns.h
2013-05-01 17:29:39 -04:00
nommu.c
new helper: file_inode(file)
2013-02-22 23:31:31 -05:00
page.c
mm: close PageTail race
2014-04-03 12:01:05 -07:00
proc_devtree.c
proc_devtree: Replace include linux/module.h with linux/export.h
2013-05-04 15:31:01 -04:00
proc_net.c
proc: Move PDE_NET() to fs/proc/proc_net.c
2013-05-01 17:29:40 -04:00
proc_sysctl.c
fs/proc: clean up printks
2013-02-27 19:10:11 -08:00
proc_tty.c
root.c
proc: Restrict mounting the proc filesystem
2013-09-26 17:18:28 -07:00
self.c
Include missing linux/slab.h inclusions
2013-04-29 15:42:01 -04:00
softirqs.c
stat.c
stat: Use size_t for sizes instead of unsigned
2013-02-01 12:32:08 +02:00
task_mmu.c
pagemap: do not leak physical addresses to non-privileged userspace
2015-04-19 10:10:51 +02:00
task_nommu.c
new helper: file_inode(file)
2013-02-22 23:31:31 -05:00
uptime.c
Merge branch 'sched/core' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip into cputime-tip
2011-12-19 19:23:15 +01:00
version.c
vmcore.c
proc: Supply a function to remove a proc entry by PDE
2013-05-01 17:29:46 -04:00