First patch fixes a KASAN reported problem Second patch fixes other possible places in ses_enclosure_data_process where the max_desc_len might access memory out of bounds. 3/4 does the same for desc_ptr in ses_enclosure_data_process. The last patch fixes another KASAN report in ses_intf_remove. Changes: v1: cc-ed stable@xxxxxxxxxxxxxxx Tomas Henzl (4): ses: fix slab-out-of-bounds reported by KASAN in ses_enclosure_data_process ses: fix possible addl_desc_ptr out-of-bounds accesses in ses_enclosure_data_process ses: fix possible desc_ptr out-of-bounds accesses in ses_enclosure_data_process ses: fix slab-out-of-bounds reported by KASAN in ses_intf_remove drivers/scsi/ses.c | 58 ++++++++++++++++++++++++++++++++-------------- 1 file changed, 41 insertions(+), 17 deletions(-) -- 2.38.1