[haiku-bugs] Re: [Haiku] #8650: KDL launching WebPositive development version

  • From: "axeld" <trac@xxxxxxxxxxxx>
  • Date: Mon, 25 Jun 2012 18:04:45 -0000

#8650: KDL launching WebPositive development version
----------------------+----------------------------
   Reporter:  aldeck  |      Owner:  nobody
       Type:  bug     |     Status:  new
   Priority:  high    |  Milestone:  R1
  Component:  System  |    Version:  R1/Development
 Resolution:          |   Keywords:
 Blocked By:          |   Blocking:
Has a Patch:  0       |   Platform:  All
----------------------+----------------------------

Comment (by axeld):

 Replying to [comment:3 bonefish]:
 > Those most likely stem from a syscall which copies out data to userland,
 but doesn't check the address given before doing so (unfortunately the
 check is missing in some code), ...

 So we either proof read every use, or we replace those functions with
 dedicated functions (ie. something like {memcpy|strlcpy}_{to|from}_user())
 which can make the necessary checks themselves. While the current method
 is more convenient to use, the latter would be much safer to use.

 In any case, it might be helpful to check if both arguments are in the
 kernel to find this problem.

-- 
Ticket URL: <http://dev.haiku-os.org/ticket/8650#comment:4>
Haiku <http://dev.haiku-os.org>
Haiku - the operating system.

Other related posts: