sysctl: Fix underflow value setting risk in vm_table - kernel

diff options

author	Nicolas Bouchinet <[email protected]>	2025-01-15 13:22:09 +0000
committer	Joel Granados <[email protected]>	2025-02-17 10:33:46 +0000
commit	a231f5bdfdd0ac402656d82ee7e6c54ec86c0c3b (patch)
tree	93209dec18e37ff1999229128e4790683d3d775a /net/unix/unix_bpf.c
parent	coredump: Fixes core_pipe_limit sysctl proc_handler (diff)
download	kernel-a231f5bdfdd0ac402656d82ee7e6c54ec86c0c3b.tar.gz kernel-a231f5bdfdd0ac402656d82ee7e6c54ec86c0c3b.zip

sysctl: Fix underflow value setting risk in vm_table

Commit 3b3376f222e3 ("sysctl.c: fix underflow value setting risk in vm_table") fixes underflow value setting risk in vm_table but misses vdso_enabled sysctl. vdso_enabled sysctl is initialized with .extra1 value as SYSCTL_ZERO to avoid negative value writes but the proc_handler is proc_dointvec and not proc_dointvec_minmax and thus do not uses .extra1 and .extra2. The following command thus works : `# echo -1 > /proc/sys/vm/vdso_enabled` This patch properly sets the proc_handler to proc_dointvec_minmax. In addition to .extra1, .extra2 is set to SYSCTL_ONE. The sysctl is thus bounded between 0 and 1. Fixes: 3b3376f222e3 ("sysctl.c: fix underflow value setting risk in vm_table") Signed-off-by: Nicolas Bouchinet <[email protected]> Reviewed-by: Jan Kara <[email protected]> Reviewed-by: Kees Cook <[email protected]> Signed-off-by: Joel Granados <[email protected]>

Diffstat (limited to 'net/unix/unix_bpf.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: