Re: [PATCH] mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show()

Next message: Biju Das: "RE: [PATCH v2] drm/bridge: ite-it6263: Add suspend/resume support"
Previous message: Sakari Ailus: "Re: [PATCH 2/2] media: i2c: imx471: Add Sony IMX471 image sensor driver"
In reply to: Miquel Raynal: "Re: [PATCH] mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show()"
Next in thread: Tudor Ambarus: "Re: [PATCH] mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Pratyush Yadav

Date: Tue Apr 21 2026 - 05:24:15 EST

On Tue, Apr 21 2026, Miquel Raynal wrote:

> Hi Tudor,
>
> On 17/04/2026 at 15:24:39 GMT, Tudor Ambarus <tudor.ambarus@xxxxxxxxxx> wrote:
>
>> Sashiko noticed an out-of-bounds read [1].
>
> [...]
>
>> Cc: stable@xxxxxxxxxxxxxxx
>> Fixes: 0257be79fc4a ("mtd: spi-nor: expose internal parameters via debugfs")
>> Closes: https://sashiko.dev/#/patchset/20260417-die-erase-fix-v2-1-73bb7004ebad%40infineon.com [1]
>> Signed-off-by: Tudor Ambarus <tudor.ambarus@xxxxxxxxxx>
>> ---
>> We shall assign a CVE to this. I'll look into how next week.
>
> They are assigned automatically to every fix, no?
>
> If spi-nor folks want to ack, I might take it through an mtd/fixes PR.

Reviewed-by: Pratyush Yadav <pratyush@xxxxxxxxxx>

Please do. Thanks!

--
Regards,
Pratyush Yadav