Re: [PATCH] scsi: aacraid: Allocate cmd_priv with scsicmd

From: Bart Van Assche
Date: Mon Jan 30 2023 - 13:19:30 EST

Next message: Ross Zwisler: "[PATCH 0/9] use canonical ftrace path whenever possible"
Previous message: Florian Fainelli: "Re: [PATCH net-next] net: bcmgenet: Add a check for oversized packets"
In reply to: Hannes Reinecke: "Re: [PATCH] scsi: aacraid: Allocate cmd_priv with scsicmd"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 1/27/23 16:04, Kees Cook wrote:

The aac_priv() helper assumes that the private cmd area immediately
follows struct scsi_cmnd. Allocate this space as part of scsicmd,
else there is a risk of heap overflow. Seen with GCC 13: [ ... ]

Bart Van Assche <bvanassche@xxxxxxx>

Next message: Ross Zwisler: "[PATCH 0/9] use canonical ftrace path whenever possible"
Previous message: Florian Fainelli: "Re: [PATCH net-next] net: bcmgenet: Add a check for oversized packets"
In reply to: Hannes Reinecke: "Re: [PATCH] scsi: aacraid: Allocate cmd_priv with scsicmd"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]