Commits
Michael Halcrow authored and Denis V. Lunev committed 91b894e71be
tpm: Security vulnerability in tpm_write() tpm_write() has an elementary security vulnerability that we should consider to be exploitable. An unsigned value is assigned to a signed value, and then a bounds check is made against the signed value. This patch changes the signed data type into its proper unsigned data type. The patch also corrects the data type in tpm_read(). This issue has already been announced in a public forum: http://lwn.net/Articles/285438/? Thus, I would like to see the patch get generally published and merged upstream as quickly as possible. Signed-off-by: Michael Halcrow <mhalcrow@us.ibm.com> Picked-up-from-security-ml-by: Kirill Korotaev <dev@parallels.com>