Re: [PATCH] scsi: libfc: Prevent integer overflow in fc_fcp_recv_data()

Next message: Mohammad Rafi Shaik: "[PATCH v1] ASoC: soc-pcm: Fix mute and unmute control for non-dynamic DAI links"
Previous message: Martin K. Petersen: "Re: [PATCH next] scsi: qla4xxx: fix typos in comments"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Martin K. Petersen

Date: Mon Oct 06 2025 - 22:29:26 EST

Dan,

> The "offset" comes from the skb->data that we received. Here the code
> is verifying that "offset + len" is within bounds however it does not
> take integer overflows into account. Use size_add() to be safe.

Applied to 6.18/scsi-staging, thanks!

--
Martin K. Petersen