Re: staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>, Zhang Shurong <zhang_shurong@xxxxxxxxxxx>, linux-staging@xxxxxxxxxxxxxxx, kernel-janitors@xxxxxxxxxxxxxxx
Subject: Re: staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
From: Markus Elfring <Markus.Elfring@xxxxxx>
Date: Sun, 9 Jul 2023 21:56:04 +0200
Cc: LKML <linux-kernel@xxxxxxxxxxxxxxx>, Dan Carpenter <error27@xxxxxxxxx>, Xu Panda <xu.panda@xxxxxxxxxx>
In-reply-to: <2023070919-monetary-sleet-2f5c@gregkh>
References: <tencent_5153B668C0283CAA15AA518325346E026A09@qq.com> <2a41ca22-a0eb-df38-be43-7175e1230bd0@web.de> <2023070919-monetary-sleet-2f5c@gregkh>
Ui-outboundreport: notjunk:1;M01:P0:xLZTuUskxGY=;x/7gtpZBBHNssTtBFSNjfeapmta atRfW5rdIOi2+U9YzZWHMIuUFK+Qs0On3j2sYdU/Puuo1taqvtmP5W0Rxquq49XW6eemPhr2U wMWQa86Dz0chKbbYpTHcM/B7yd0i5HZ/hgxKfMEf9qYhhOfdXX4XlVp8OqsJJuxCP3C9hc4g2 lLVh6NLkIeV21sO+upku1Lx7ce4sgPxetW2PXl/pMacS9zYY0pCckBESKtqZSco56udnYDgzi AUeooCeWZusZyctKRtPQAi+hsbR5idiMV4o94heC86zp8Rg6V3V8/TTzQuSv1PkcWU++91Ms2 VUiwu0Dgfg/3Oh+5EbNGACkk1T2JYDFMZSxW4BVvdZylJtekrenPqY+yNdqDgjItc2jDVG+jM mhfWvM88j5uYV/jIRsaBDpLikiswJfh71RWVyUlElRHxdaAN7s/6UEjY04Fw68eSAQvuSONaA TCtDy5OfySXj9u90pSvpp+fRjuv6oQgnlA2zDTgZISiiDd/B1+no6xDqGq6AJ4cWd2zLmxbhU xM27f/Ix0JOmuecD17R4nLI7T3XHVJI3y+i9reXcJGh8Zz6xa4L8hwKTa5oCBSIXxgk1VHhxK trfqKtBsyo3bFJbT2FI/DWt2k1L1VdJag6B0U5r5izVrXlP8ExoOIh3xnl7VlVSxwxhGVATs9 Db7w6A3b/vJM/bIWOQirZg1LVC4xDWAbkHDMxKQgZwRrHyeEz3qIwV7+oPYvU0JvkZQW7FW+s 4UtmDwbJR8D6NuxBGvrWqcj+REIbKFN0YfoYI7kox+RPfq19zgTlp+46rgMszvyyu5hKOL4WE nY1cSxtnY3oFfreOcLevAYAc/WzL38BAMMfjBvX7yY4kJ1bNPvuWJccTqv6aTk65XL7ggBLQ8 mYtuBVqTUTDdZ4nENfm60DnlGg7BvGl4jSnwypsooRGCq9e/FAzASgcSPJLdckWm+mc6hyeMm IYp/0g==
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.13.0

>>> The "exc->key_len" is a u16 that comes from the user.  If it's over
>>> IW_ENCODING_TOKEN_MAX (64) that could lead to memory corruption.
>>
>> Please choose an imperative change suggestion.
>
> Please stop reviewing staging patches, it is not helpful for anyone.

It seems that further contributors need to become more aware about
(and finally adhere to) requirements from the Linux development documentation.

Regards,
Markus

Follow-Ups:
- Re: staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
  - From: Zhang Shurong

References:
- [PATCH] staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
  - From: Zhang Shurong
- Re: [PATCH] staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
  - From: Markus Elfring
- Re: [PATCH] staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
  - From: Greg Kroah-Hartman

Prev by Date: Re: [PATCH] staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
Next by Date: Re: [PATCH] Add struct ad9832_platform_data to the include/linux/iio
Previous by thread: Re: [PATCH] staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
Next by thread: Re: staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
Index(es):
- Date
- Thread

[Index of Archives] [Linux Driver Development] [Linux Driver Backports] [DMA Engine] [Linux GPIO] [Linux SPI] [Video for Linux] [Linux USB Devel] [Linux Coverity] [Linux Audio Users] [Linux Kernel] [Linux SCSI] [Yosemite Backpacking]