summaryrefslogtreecommitdiffstats
path: root/fs/ubifs/misc.c
diff options
context:
space:
mode:
authorSteve French <smfrench@gmail.com>2018-04-20 19:19:07 +0200
committerSteve French <smfrench@gmail.com>2018-04-20 20:31:32 +0200
commit1d0cffa674cfa7d185a302c8c6850fc50b893bed (patch)
treedfb96bed0a3b25cef2c0d4aed476e95a62dc0794 /fs/ubifs/misc.c
parentcifs: smbd: Dump SMB packet when configured (diff)
downloadlinux-1d0cffa674cfa7d185a302c8c6850fc50b893bed.tar.xz
linux-1d0cffa674cfa7d185a302c8c6850fc50b893bed.zip
cifs: do not allow creating sockets except with SMB1 posix exensions
RHBZ: 1453123 Since at least the 3.10 kernel and likely a lot earlier we have not been able to create unix domain sockets in a cifs share when mounted using the SFU mount option (except when mounted with the cifs unix extensions to Samba e.g.) Trying to create a socket, for example using the af_unix command from xfstests will cause : BUG: unable to handle kernel NULL pointer dereference at 00000000 00000040 Since no one uses or depends on being able to create unix domains sockets on a cifs share the easiest fix to stop this vulnerability is to simply not allow creation of any other special files than char or block devices when sfu is used. Added update to Ronnie's patch to handle a tcon link leak, and to address a buf leak noticed by Gustavo and Colin. Acked-by: Gustavo A. R. Silva <gustavo@embeddedor.com> CC: Colin Ian King <colin.king@canonical.com> Reviewed-by: Pavel Shilovsky <pshilov@microsoft.com> Reported-by: Eryu Guan <eguan@redhat.com> Signed-off-by: Ronnie Sahlberg <lsahlber@redhat.com> Signed-off-by: Steve French <smfrench@gmail.com> Cc: stable@vger.kernel.org
Diffstat (limited to 'fs/ubifs/misc.c')
0 files changed, 0 insertions, 0 deletions