Re: [PATCH v2 2/4] cdc-acm: fix possible invalid access when processing notification

From: Sergei Shtylyov
Date: Sun Mar 19 2017 - 05:51:30 EST

Next message: Russell King - ARM Linux: "Re: [PATCH v5 00/39] i.MX Media Driver"
Previous message: Paul Menzel: "Re: [coreboot] checkpatch: Question regarding asmlinkage and storage class"
In reply to: Tobias Herzog: "[PATCH v2 2/4] cdc-acm: fix possible invalid access when processing notification"
Next in thread: Oliver Neukum: "Re: [PATCH v2 2/4] cdc-acm: fix possible invalid access when processing notification"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 3/18/2017 9:52 PM, Tobias Herzog wrote:

Notifications may only be 8 bytes so long. Accessing the 9th and

s/so//.
"So long and thanks for all the fish!" :-)

10th byte of unimplemented/unknown notifications may be insecure.
Also check the length of known notifications before accessing anything
behind the 8th byte.

Signed-off-by: Tobias Herzog <t-herzog@xxxxxx>

[...]

MBR, Sergei

Next message: Russell King - ARM Linux: "Re: [PATCH v5 00/39] i.MX Media Driver"
Previous message: Paul Menzel: "Re: [coreboot] checkpatch: Question regarding asmlinkage and storage class"
In reply to: Tobias Herzog: "[PATCH v2 2/4] cdc-acm: fix possible invalid access when processing notification"
Next in thread: Oliver Neukum: "Re: [PATCH v2 2/4] cdc-acm: fix possible invalid access when processing notification"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]