Re: [PATCH] of/device: Prevent buffer overflow in of_device_modalias()

From: Rob Herring
Date: Thu Aug 24 2017 - 12:25:19 EST

Next message: Nick Desaulniers: "Re: [PATCH v2] netfilter: nf_nat_h323: fix logical-not-parentheses warning"
Previous message: Dan Williams: "Re: [PATCH v6 0/5] MAP_DIRECT and block-map-atomic files"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Aug 23, 2017 at 8:04 PM, Bjorn Andersson
<bjorn.andersson@xxxxxxxxxx> wrote:
> As of_device_get_modalias() returns the number of bytes that would have
> been written to the target string, regardless of how much did fit in the
> buffer, it's possible that the returned index points beyond the buffer
> passed to of_device_modalias() - causing memory beyond the buffer to be
> null terminated.

I guess ibmebus and macio had this bug for some time because I just
copied those implementations.

Applying both patches. Thanks.

Rob

Next message: Nick Desaulniers: "Re: [PATCH v2] netfilter: nf_nat_h323: fix logical-not-parentheses warning"
Previous message: Dan Williams: "Re: [PATCH v6 0/5] MAP_DIRECT and block-map-atomic files"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]