The following commit landed upstream that at least intends to fix the bug outlined here, even though it does not enable proper auditing for x32.
commit a3c54931199565930d6d84f4c3456f6440aefd41 Author: Andy Lutomirski <email address hidden> Date: Wed May 28 23:09:58 2014 -0400
auditsc: audit_krule mask accesses need bounds checking
Fixes an easy DoS and possible information disclosure.
This does nothing about the broken state of x32 auditing.
eparis: If the admin has enabled auditd and has specifically loaded audit rules. This bug has been around since before git. Wow...
Cc: <email address hidden> Signed-off-by: Andy Lutomirski <email address hidden> Signed-off-by: Eric Paris <email address hidden> Signed-off-by: Linus Torvalds <email address hidden>
The following commit landed upstream that at least intends to fix the bug outlined here, even though it does not enable proper auditing for x32.
commit a3c549311995659 30d6d84f4c3456f 6440aefd41
Author: Andy Lutomirski <email address hidden>
Date: Wed May 28 23:09:58 2014 -0400
auditsc: audit_krule mask accesses need bounds checking
Fixes an easy DoS and possible information disclosure.
This does nothing about the broken state of x32 auditing.
eparis: If the admin has enabled auditd and has specifically loaded
audit rules. This bug has been around since before git. Wow...
Cc: <email address hidden>
Signed-off-by: Andy Lutomirski <email address hidden>
Signed-off-by: Eric Paris <email address hidden>
Signed-off-by: Linus Torvalds <email address hidden>