Re: [PATCH v3] nfc: st-nci: Fix potential buffer overflows in EVT_TRANSACTION

From: Krzysztof Kozlowski
Date: Wed Jan 12 2022 - 05:07:33 EST

Next message: Krzysztof Kozlowski: "Re: [PATCH v3] nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION"
Previous message: Alexander Sergeyev: "Re: [PATCH 1/4] ALSA: hda/realtek: fix mute/micmute LEDs for HP 855 G8"
In reply to: Jordy Zomer: "[PATCH v3] nfc: st-nci: Fix potential buffer overflows in EVT_TRANSACTION"
Next in thread: Jakub Kicinski: "Re: [PATCH v3] nfc: st-nci: Fix potential buffer overflows in EVT_TRANSACTION"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 11/01/2022 17:45, Jordy Zomer wrote:
> It appears that there are some buffer overflows in EVT_TRANSACTION.
> This happens because the length parameters that are passed to memcpy
> come directly from skb->data and are not guarded in any way.
>
> Signed-off-by: Jordy Zomer <jordy@pwning.systems>
> ---
> drivers/nfc/st-nci/se.c | 10 ++++++++++
> 1 file changed, 10 insertions(+)
>

Looks ok.

Reviewed-by: Krzysztof Kozlowski <krzysztof.kozlowski@xxxxxxxxxxxxx>

Best regards,
Krzysztof

Next message: Krzysztof Kozlowski: "Re: [PATCH v3] nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION"
Previous message: Alexander Sergeyev: "Re: [PATCH 1/4] ALSA: hda/realtek: fix mute/micmute LEDs for HP 855 G8"
In reply to: Jordy Zomer: "[PATCH v3] nfc: st-nci: Fix potential buffer overflows in EVT_TRANSACTION"
Next in thread: Jakub Kicinski: "Re: [PATCH v3] nfc: st-nci: Fix potential buffer overflows in EVT_TRANSACTION"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]