Patch "crypto: lrw - Free rctx->ext with kzfree" has been added to the 4.16-stable tree

stable.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

* Patch "crypto: lrw - Free rctx->ext with kzfree" has been added to the 4.16-stable tree
@ 2018-04-05 20:00 gregkh
  0 siblings, 0 replies; only message in thread
From: gregkh @ 2018-04-05 20:00 UTC (permalink / raw)
  To: herbert, dan.carpenter, gregkh, stable; +Cc: stable, stable-commits


This is a note to let you know that I've just added the patch titled

    crypto: lrw - Free rctx->ext with kzfree

to the 4.16-stable tree which can be found at:
    http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=summary

The filename of the patch is:
     crypto-lrw-free-rctx-ext-with-kzfree.patch
and it can be found in the queue-4.16 subdirectory.

If you, or anyone else, feels it should not be added to the stable tree,
please let <stable@vger.kernel.org> know about it.


>From 8c9bdab21289c211ca1ca6a5f9b7537b4a600a02 Mon Sep 17 00:00:00 2001
From: Herbert Xu <herbert@gondor.apana.org.au>
Date: Fri, 23 Mar 2018 08:14:44 +0800
Subject: crypto: lrw - Free rctx->ext with kzfree

From: Herbert Xu <herbert@gondor.apana.org.au>

commit 8c9bdab21289c211ca1ca6a5f9b7537b4a600a02 upstream.

The buffer rctx->ext contains potentially sensitive data and should
be freed with kzfree.

Cc: <stable@vger.kernel.org>
Fixes: 700cb3f5fe75 ("crypto: lrw - Convert to skcipher")
Reported-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

---
 crypto/lrw.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- a/crypto/lrw.c
+++ b/crypto/lrw.c
@@ -313,7 +313,7 @@ static void exit_crypt(struct skcipher_r
 	rctx->left = 0;
 
 	if (rctx->ext)
-		kfree(rctx->ext);
+		kzfree(rctx->ext);
 }
 
 static int do_encrypt(struct skcipher_request *req, int err)


Patches currently in stable-queue which might be from herbert@gondor.apana.org.au are

queue-4.16/crypto-caam-fix-null-dereference-at-error-path.patch
queue-4.16/crypto-ccp-fill-the-result-buffer-only-on-digest-finup-and-final-ops.patch
queue-4.16/crypto-talitos-fix-ipsec-cipher-in-length.patch
queue-4.16/crypto-x86-cast5-avx-fix-ecb-encryption-when-long-sg-follows-short-one.patch
queue-4.16/crypto-arm-arm64-fix-random-regeneration-of-s_shipped.patch
queue-4.16/crypto-ccp-return-an-actual-key-size-from-rsa-max_size-callback.patch
queue-4.16/crypto-inside-secure-fix-clock-management.patch
queue-4.16/crypto-lrw-free-rctx-ext-with-kzfree.patch
queue-4.16/crypto-testmgr-fix-incorrect-values-in-pkcs-1-test-vector.patch
queue-4.16/crypto-talitos-don-t-persistently-map-req_ctx-hw_context-and-req_ctx-buf.patch
queue-4.16/crypto-ahash-fix-early-termination-in-hash-walk.patch

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2018-04-05 20:01 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2018-04-05 20:00 Patch "crypto: lrw - Free rctx->ext with kzfree" has been added to the 4.16-stable tree gregkh

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).