Google
  Web www.spinics.net

[GIT PATCHES for 2.6.28] V4L/DVB security fixes (CVE-2008-5033)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 
Linus,

Please pull from:
        ssh://master.kernel.org/pub/scm/linux/kernel/git/mchehab/linux-2.6.git for_linus

For a series of fixes at tvaudio module motivated by CVE-2008-5033.

This module were written back on 2000 and weren't receiving much 
attention nowadays. The only patches lately were related to API improvements
elsewhere (like V4L2 conversion and I2C changes).

This patch series fixes a memory leak and improves the error handling inside
the driver to reduce the potential risk of security issues, properly fixing
CVE-2008-5033.

It consists of the following patches:
   - tvaudio: fix a memory leak;
   - tvaudio: instead of using a magic number, use ARRAY_SIZE;
   - tvaudio: cleanup - group all callbacks together;
   - tvtime: remove generic_checkmode callback;
   - tvaudio: add additional logic to avoid OOPS;
   - tvaudio: update initial comments;
   - tvaudio: use a direct reference for chip description;
   - Avoid writing outside shadow.bytes[] array;
   - tvaudio: Improve comments and remove a unneeded prototype;
   - tvaudio: Improve debug msg by printing something more human;
   - CVE-2008-5033: fix OOPS on tvaudio when controlling bass/treble.

Cheers,
Mauro.

---

 drivers/media/video/tvaudio.c |  233 ++++++++++++++++++++++++++---------------
 1 files changed, 150 insertions(+), 83 deletions(-)

Mauro Carvalho Chehab (11):
      V4L/DVB (9613): tvaudio: fix a memory leak
      V4L/DVB (9615): tvaudio: instead of using a magic number, use ARRAY_SIZE
      V4L/DVB (9616): tvaudio: cleanup - group all callbacks together
      V4L/DVB (9617): tvtime: remove generic_checkmode callback
      V4L/DVB (9618): tvaudio: add additional logic to avoid OOPS
      V4L/DVB (9619): tvaudio: update initial comments
      V4L/DVB (9620): tvaudio: use a direct reference for chip description
      V4L/DVB (9621): Avoid writing outside shadow.bytes[] array
      V4L/DVB (9622): tvaudio: Improve comments and remove a unneeded prototype
      V4L/DVB (9623): tvaudio: Improve debug msg by printing something more human
      V4L/DVB (9624): CVE-2008-5033: fix OOPS on tvaudio when controlling bass/treble

---------------------------------------------------
V4L/DVB development is hosted at http://linuxtv.org

_______________________________________________
v4l-dvb-maintainer mailing list
v4l-dvb-maintainer@xxxxxxxxxxx
http://www.linuxtv.org/cgi-bin/mailman/listinfo/v4l-dvb-maintainer

[Linux Media]     [Older V4L]     [Linux DVB]     [Video Disk Recorder]     [Asterisk]     [Photo]     [DCCP]     [Netdev]     [Xorg]     [Util Linux NG]     [Xfree86]     [Free Photo Albums]     [Fedora Users]     [Fedora Women]     [ALSA Users]     [ALSA Devel]     [SSH]     [Linux USB]

-->
Add to Google Powered by Linux

Google PageRank Checking tool