Re: [RESEND][PATCH] hwmon: scmi: fix potential buffer overflow in scmi_hwmon_probe()

From: Guenter Roeck
Date: Wed Jul 15 2020 - 10:55:56 EST

Next message: David Laight: "RE: [PATCH 7/7] exec: Implement kernel_execve"
Previous message: Lee Jones: "Re: [PATCH 1/1] ASoC: fsl: fsl-asoc-card: Trivial: Fix misspelling of 'exists'"
In reply to: Sudeep Holla: "Re: [RESEND][PATCH] hwmon: scmi: fix potential buffer overflow in scmi_hwmon_probe()"
Next in thread: Sudeep Holla: "Re: [RESEND][PATCH] hwmon: scmi: fix potential buffer overflow in scmi_hwmon_probe()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 7/15/20 6:00 AM, Sudeep Holla wrote:
> On Wed, Jul 15, 2020 at 01:13:38PM +0100, Cristian Marussi wrote:
>> SMATCH detected a potential buffer overflow in the manipulation of
>> hwmon_attributes array inside the scmi_hwmon_probe function:
>>
>> drivers/hwmon/scmi-hwmon.c:226
>> scmi_hwmon_probe() error: buffer overflow 'hwmon_attributes' 6 <= 9
>>
>> Fix it by statically declaring the size of the array as the maximum
>> possible as defined by hwmon_max define.
>>
>
> Makes sense to me,
>
> Reviewed-by: Sudeep Holla <sudeep.holla@xxxxxxx>
>
> There may be other such instances. I am not sure if Guenter has ignored
> them intentionally or just no one has fixed them so far.

I am not perfect. No, I have not intentionally ignored anything,
and I don't recall seeing smatch reports (or this patch) before.

Guenter

Next message: David Laight: "RE: [PATCH 7/7] exec: Implement kernel_execve"
Previous message: Lee Jones: "Re: [PATCH 1/1] ASoC: fsl: fsl-asoc-card: Trivial: Fix misspelling of 'exists'"
In reply to: Sudeep Holla: "Re: [RESEND][PATCH] hwmon: scmi: fix potential buffer overflow in scmi_hwmon_probe()"
Next in thread: Sudeep Holla: "Re: [RESEND][PATCH] hwmon: scmi: fix potential buffer overflow in scmi_hwmon_probe()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]