Techwizz/kernel-fxtec-pro1x
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
kernel-fxtec-pro1x/drivers/android
History
Todd Kjos 524ad00e80 binder: fix memory leak in error path 
commit 1909a671dbc3606685b1daf8b22a16f65ea7edda upstream.

syzkallar found a 32-byte memory leak in a rarely executed error
case. The transaction complete work item was not freed if put_user()
failed when writing the BR_TRANSACTION_COMPLETE to the user command
buffer. Fixed by freeing it before put_user() is called.

Reported-by: syzbot+182ce46596c3f2e1eb24@syzkaller.appspotmail.com
Signed-off-by: Todd Kjos <tkjos@google.com>
Cc: stable <stable@vger.kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2019-07-14 08:11:21 +02:00
..
binder.c binder: fix memory leak in error path 2019-07-14 08:11:21 +02:00
binder_alloc.c binder: fix race between munmap() and direct reclaim 2019-06-09 09:17:23 +02:00
binder_alloc.h
binder_alloc_selftest.c
binder_trace.h
Kconfig
Makefile