On Wed, 13 Sep 2017, Dmitry Torokhov wrote: > > > From: Adrian Salido <salidoa@xxxxxxxxxx> > > > > > > The buffer allocation is not currently accounting for an extra byte for > > > the report id. This can cause an out of bounds access in function > > > i2c_hid_set_or_send_report() with reportID > 15. > > > > > > Signed-off-by: Guenter Roeck <groeck@xxxxxxxxxxxx> > > > Signed-off-by: Dmitry Torokhov <dmitry.torokhov@xxxxxxxxx> > > > > Missing signoff from the patch author? > > Oops, I must have cut it off on accident while removing ChromeOS > specific tags, the original commit is here: > > https://chromium-review.googlesource.com/c/chromiumos/third_party/kernel/+/475212 Ok, thanks, will use that one. How about Reviewed-by: Benson Leung <bleung@xxxxxxxxxxxx> which is missing in the mail you've sent, but is there in the above reference commit? > > Also, I think this should have Cc: stable, right? > > I usually let maintainers decide, but yes. I'll be adding it. Thanks, -- Jiri Kosina SUSE Labs -- To unsubscribe from this list: send the line "unsubscribe linux-input" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
