Kernel/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-12-29 17:25:38 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux-2.6.32.y
linux-stable/sound
History
Takashi Iwai af6387516d ALSA: seq: Fix race at timer setup and close 
commit 3567eb6af6 upstream.

ALSA sequencer code has an open race between the timer setup ioctl and
the close of the client.  This was triggered by syzkaller fuzzer, and
a use-after-free was caught there as a result.

This patch papers over it by adding a proper queue->timer_mutex lock
around the timer-related calls in the relevant code path.

Reported-by: Dmitry Vyukov <dvyukov@google.com>
Tested-by: Dmitry Vyukov <dvyukov@google.com>
Signed-off-by: Takashi Iwai <tiwai@suse.de>
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>
Signed-off-by: Willy Tarreau <w@1wt.eu>
2016-03-12 14:25:48 +01:00
..
aoa ALSA: Don't assume i2c device probing always succeeds 2009-10-01 07:46:33 +02:00
arm ALSA: AACI: fix recording bug 2009-11-30 14:50:55 +01:00
atmel ALSA: snd-atmel-abdac: increase periods_min to 6 instead of 4 2009-04-06 03:56:28 +02:00
core ALSA: seq: Fix race at timer setup and close 2016-03-12 14:25:48 +01:00
drivers ALSA: dummy: Disable switching timer backend via sysfs 2016-03-12 14:25:44 +01:00
i2c V4L/DVB (10771): tea575x-tuner: convert it to V4L2 API 2009-03-30 12:43:02 -03:00
isa Merge branch 'topic/cmi8330' into for-linus 2009-09-10 15:32:45 +02:00
mips sound: sgio2audio/pdaudiocf/usb-audio: initialize PCM buffer 2010-01-06 15:03:26 -08:00
oss sound/oss: fix deadlock in sequencer_ioctl(SNDCTL_SEQ_OUTOFBAND) 2015-05-24 10:10:56 +02:00
parisc ALSA: sound/parisc: Move dereference after NULL test 2009-10-30 12:01:38 +01:00
pci ALSA: ac97 - Fix missing NULL check in snd_ac97_cvol_new() 2013-06-10 11:42:32 +02:00
pcmcia sound: sgio2audio/pdaudiocf/usb-audio: initialize PCM buffer 2010-01-06 15:03:26 -08:00
ppc ALSA: powermac - Lineout detection on G4 DA 2011-05-09 15:55:18 -07:00
sh ALSA: snd-aica: declare MODULE_FIRMWARE 2009-11-08 09:13:51 +01:00
soc ASoC: wm8940: Properly set codec->dapm.bias_level 2011-11-26 09:10:34 -08:00
sparc ALSA: Add missing SNDRV_PCM_INFO_BATCH flag to some drivers 2009-04-28 15:06:44 +02:00
spi ALSA: Convert to snd_card_create() in other sound/* 2009-01-12 15:21:19 +01:00
synth ALSA: emux: Add trivial compat ioctl handler 2011-05-09 15:55:17 -07:00
usb ALSA: usb-audio: avoid freeing umidi object twice 2016-03-12 14:25:47 +01:00
ac97_bus.c ALSA: ac97 - Include ac97_codec.h for ac97_bus_type declaration 2008-12-02 16:25:37 +01:00
Kconfig sound: make OSS device number claiming optional and schedule its removal 2009-08-10 13:59:36 +02:00
last.c [ALSA] Remove sound/driver.h 2008-01-31 17:29:48 +01:00
Makefile ALSA: Add Atmel ALSA drivers directory 2009-02-05 15:08:53 +01:00
sound_core.c Driver-Core: extend devnode callbacks to provide permissions 2009-09-19 12:50:38 -07:00
sound_firmware.c