unsafe_put_user() turns out to be unsafe
unsafe_put_user() turns out to be unsafe
[Kernel] Posted Oct 13, 2017 21:19 UTC (Fri) by corbet
When a veteran kernel developer introduces a severe security hole into the kernel, it can be instructive to look at how the vulnerability came about. Among other things, it can point the finger at an API that lends itself toward the creation of such problems. And, as it turns out, the knowledge that the API is dangerous at the outset and marking it as such may not be enough to prevent problems.