Re: (subset) [PATCH v3 0/3] nvmem: fix out-of-bounds reboot-mode write

From: Srinivas Kandagatla
Date: Fri Dec 20 2024 - 11:48:41 EST

Next message: Yury Norov: "Re: [PATCH 3/6] sched_ext: Introduce per-node idle cpumasks"
Previous message: Arnd Bergmann: "Re: [PATCH v2 0/4] ARM: config: stm32: Remove useless flags"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 04 Nov 2024 10:23:09 -0500, Jennifer Berringer wrote:
> These patches fix a small out-of-bounds write when using the
> nvmem-reboot-mode driver on Qualcomm SA8775P, such as by executing
> "reboot bootloader" in a shell. Relevant error log:
>
> BUG: KASAN: slab-out-of-bounds in nvmem_cell_prepare_write_buffer+0x144/0x47c
> Write of size 4 at addr ffff19dd8e1a37a0 by task systemd-shutdow/1
> Hardware name: Qualcomm SA8775P Ride (DT)
> Call trace:
> nvmem_cell_prepare_write_buffer
> nvmem_cell_write
> nvmem_reboot_mode_write
> The buggy address is located 0 bytes inside of
> allocated 1-byte region
>
> [...]

Applied, thanks!

[1/3] nvmem: core: improve range check for nvmem_cell_write()
commit: 27a3485271ed3e81dec1e51460dc671dae387a2a

Best regards,
--
Srinivas Kandagatla <srinivas.kandagatla@xxxxxxxxxx>

Next message: Yury Norov: "Re: [PATCH 3/6] sched_ext: Introduce per-node idle cpumasks"
Previous message: Arnd Bergmann: "Re: [PATCH v2 0/4] ARM: config: stm32: Remove useless flags"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]