[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] linux bugs (survival stories)?

To: Valdis.Kletnieks@xxxxxx
Subject: Re: [Full-disclosure] linux bugs (survival stories)?
From: Georgi Guninski <guninski@xxxxxxxxxxxx>
Date: Tue, 12 Apr 2005 22:59:36 +0300

On Tue, Apr 12, 2005 at 02:26:34PM -0400, Valdis.Kletnieks@xxxxxx wrote:
> If anybody wants a good kernel-auditing project, just start going through the
> 2.6.12-rc2 tree and look at uses of copy_from_user(), and make sure that each
> use of that function then proceeds to *validate* the data (especially in the
> various driver's .ioctl methods - historically a place for issues).   At least

like this in 2.6.11:

grep -rniI 'fuck' * | grep -iv 'fuck billg' |  grep -iv 'fuck bill g' | grep
'junk'
sound/oss/opl3.c:837:    * What the fuck is going on here?  We leave junk in
the beginning

(the key to success being grepping for 'bill')

-- 
where do you want bill gates to go today?

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] linux bugs (survival stories)?
  - From: Bipin Gautam
- Re: [Full-disclosure] linux bugs (survival stories)?
  - From: Valdis . Kletnieks

Prev by Date: [Full-disclosure] MS05-021 Workaround - Block Port 25/SMTP - HAHA!
Next by Date: Re: [Full-disclosure] linux bugs (survival stories)?
Previous by thread: Re: [Full-disclosure] linux bugs (survival stories)?
Next by thread: Re: [Full-disclosure] linux bugs (survival stories)?
Index(es):
- Date
- Thread