Re: [PATCH] firmware: arm_ffa: fix memory corruption in ffa_msg_send2()

From: Sudeep Holla
Date: Thu Apr 25 2024 - 07:15:00 EST

Next message: Sakari Ailus: "Re: [PATCH v6 11/11] media: subdev: Improve s_stream documentation"
Previous message: Laurent Pinchart: "Re: [PATCH V2] drm/bridge: imx: Fix unmet depenency for PHY_FSL_SAMSUNG_HDMI_PHY"
In reply to: Dan Carpenter: "[PATCH] firmware: arm_ffa: fix memory corruption in ffa_msg_send2()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 24 Apr 2024 14:40:43 +0300, Dan Carpenter wrote:
> The "msg" pointer is a struct and msg->offset is the sizeof(*msg). The
> pointer here math means the memcpy() will write outside the bounds.
> Cast "msg" to a u8 pointer to fix this.
>
Applied to sudeep.holla/linux (for-next/ffa/updates), thanks!

[1/1] firmware: arm_ffa: fix memory corruption in ffa_msg_send2()
https://git.kernel.org/sudeep.holla/c/ddfade88f49d
--
Regards,
Sudeep

Next message: Sakari Ailus: "Re: [PATCH v6 11/11] media: subdev: Improve s_stream documentation"
Previous message: Laurent Pinchart: "Re: [PATCH V2] drm/bridge: imx: Fix unmet depenency for PHY_FSL_SAMSUNG_HDMI_PHY"
In reply to: Dan Carpenter: "[PATCH] firmware: arm_ffa: fix memory corruption in ffa_msg_send2()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]