AuxXxilium/linux_dsm_epyc7002
1
0
Fork 0
mirror of https://github.com/AuxXxilium/linux_dsm_epyc7002.git synced 2024-11-24 21:20:50 +07:00
Code Issues Actions Packages Projects Releases Wiki Activity

ALSA: sb16 - info leak in snd_sb_csp_ioctl()

Browse Source 
There is a 2 byte hole after "info.func_nr" so we could leak unitialized
stack information to userspace.

Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Takashi Iwai <tiwai@suse.de>
This commit is contained in:
Dan Carpenter 2013-11-07 11:09:54 +03:00 committed by Takashi Iwai
parent f44f2a5417
commit bffbbc0a2c
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
sound/isa/sb/sb16_csp.c
View File

@ -208,6 +208,7 @@ static int snd_sb_csp_ioctl(struct snd_hwdep * hw, struct file *file, unsigned i
switch (cmd) { switch (cmd) {
/* get information */ /* get information */
case SNDRV_SB_CSP_IOCTL_INFO: case SNDRV_SB_CSP_IOCTL_INFO:
memset(&info, 0, sizeof(info));
*info.codec_name = *p->codec_name; *info.codec_name = *p->codec_name;
info.func_nr = p->func_nr; info.func_nr = p->func_nr;
info.acc_format = p->acc_format; info.acc_format = p->acc_format;