Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S933627AbYA2RO3 (ORCPT ); Tue, 29 Jan 2008 12:14:29 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1764190AbYA2ROM (ORCPT ); Tue, 29 Jan 2008 12:14:12 -0500 Received: from g1t0029.austin.hp.com ([15.216.28.36]:27922 "EHLO g1t0029.austin.hp.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1753414AbYA2ROJ (ORCPT ); Tue, 29 Jan 2008 12:14:09 -0500 From: Paul Moore Organization: Hewlett Packard To: David Miller Subject: Re: [PATCH] SELinux: Fix double free in selinux_netlbl_sock_setsid() Date: Tue, 29 Jan 2008 12:13:53 -0500 User-Agent: KMail/1.9.7 Cc: linux-kernel@vger.kernel.org, netdev@vger.kernel.org, selinux@tycho.nsa.gov, bunk@kernel.org, jmorris@namei.org References: <20080129022026.7930.18782.stgit@flek.lan> <20080128.195124.188485009.davem@davemloft.net> In-Reply-To: <20080128.195124.188485009.davem@davemloft.net> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200801291213.54310.paul.moore@hp.com> Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1587 Lines: 39 On Monday 28 January 2008 10:51:24 pm David Miller wrote: > From: Paul Moore > Date: Mon, 28 Jan 2008 21:20:26 -0500 > > > As pointed out by Adrian Bunk, commit > > 45c950e0f839fded922ebc0bfd59b1081cc71b70 caused a double-free when > > security_netlbl_sid_to_secattr() fails. This patch fixes this by > > removing the netlbl_secattr_destroy() call from that function since we > > are already releasing the secattr memory in > > selinux_netlbl_sock_setsid(). > > > > Signed-off-by: Paul Moore > > Applied, and I'll queue this up for -stable too. Thanks. Sorry for not catching this in the first place. > Please, when mentioning specific commits please also provide > the changelog headline along with the SHA1 hash. > > The reason is that when this fix is moved over to another > tree where the SHA1 of the causing change is different people > studying your fix won't be able to find it without more stable > contextual information. Noted, I'll make sure to include the patch description in the future. I wasn't aware that the hash took into account anything other than the individual commit it represented. However, now that I think about it, since order is so critical it only makes sense to have the hash take into account at least the previous commit. -- paul moore linux security @ hp -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/