Re: [PATCH] [SCSI] bfa: integer overflow in debugfs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Dan,

> We could allocate less memory than intended because we do:
>
> 	bfad->regdata = kzalloc(len << 2, GFP_KERNEL);
>
> The shift can overflow leading to a crash.  This is debugfs code so the
> impact is very small.  I fixed the network version of this in March with
> commit 13e2d5187f6b ("bna: integer overflow bug in debugfs").

Applied to 4.15/scsi-queue. Thanks!

-- 
Martin K. Petersen	Oracle Linux Engineering
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [SCSI Target Devel]     [Linux SCSI Target Infrastructure]     [Kernel Newbies]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Linux IIO]     [Samba]     [Device Mapper]

  Powered by Linux