From: Chris Wright <chrisw@osdl.org>
Date: Fri, 7 Oct 2005 22:52:38 +0000 (-0700)
Subject: Add fix for request_key_auth memory leak
X-Git-Tag: v2.6.13.4~6
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=ce31a5dc31420aa8ed89e599d14459065b8b248e;p=thirdparty%2Fkernel%2Fstable-queue.git

Add fix for request_key_auth memory leak
---

diff --git a/queue/key-rka-memleak.patch b/queue/key-rka-memleak.patch
new file mode 100644
index 00000000000..df6cb6f39e2
--- /dev/null
+++ b/queue/key-rka-memleak.patch
@@ -0,0 +1,23 @@
+Subject: [PATCH] key: plug request_key_auth memleak
+
+Plug request_key_auth memleak.  This can be triggered by unprivileged
+users, so is local DoS.
+
+Signed-off-by: Chris Wright <chrisw@osdl.org>
+Signed-Off-By: David Howells <dhowells@redhat.com>
+---
+ security/keys/request_key_auth.c |    1 +
+ 1 files changed, 1 insertion(+)
+
+Index: linux-2.6.13.y/security/keys/request_key_auth.c
+===================================================================
+--- linux-2.6.13.y.orig/security/keys/request_key_auth.c
++++ linux-2.6.13.y/security/keys/request_key_auth.c
+@@ -96,6 +96,7 @@ static void request_key_auth_destroy(str
+ 	kenter("{%d}", key->serial);
+ 
+ 	key_put(rka->target_key);
++	kfree(rka);
+ 
+ } /* end request_key_auth_destroy() */
+ 
diff --git a/queue/series b/queue/series
index 8655b4e7bd0..d338d96e9d8 100644
--- a/queue/series
+++ b/queue/series
@@ -4,3 +4,4 @@ tcp-congestion-control-bug.patch
 drm-module_param-permissions-fix.patch
 fix-sparc64-fpu-register-corruption.patch
 plug-names_cache-memleak.patch
+key-rka-memleak.patch