From: Leon Romanovsky <leonro@xxxxxxxxxxxx> Hi, This is another round of overflow patches from Boris. Main change is use of size_t variables instead of previously used u32. Thanks Boris Pismenny (2): IB/mlx5: Fix out-of-bounds read in create_raw_packet_qp_rq IB/mlx5: Fix integer overflows in mlx5_ib_create_srq drivers/infiniband/hw/mlx5/qp.c | 23 ++++++++++++++++------- drivers/infiniband/hw/mlx5/srq.c | 15 +++++++++------ include/linux/mlx5/driver.h | 4 ++-- 3 files changed, 27 insertions(+), 15 deletions(-) -- 2.16.2 -- To unsubscribe from this list: send the line "unsubscribe linux-rdma" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
