AuxXxilium/linux_dsm_epyc7002
1
0
Fork 0
mirror of https://github.com/AuxXxilium/linux_dsm_epyc7002.git synced 2025-02-07 18:35:07 +07:00
Code Issues Actions Packages Projects Releases Wiki Activity
4f7f4dcfff
linux_dsm_epyc7002/drivers/infiniband
History
Vlad Tsyrklevich 4f7f4dcfff infiniband/uverbs: Fix integer overflows 
The 'num_sge' variable is verfied to be smaller than the 'sge_count'
variable; however, since both are user-controlled it's possible to cause
an integer overflow for the kmalloc multiply on 32-bit platforms
(num_sge and sge_count are both defined u32). By crafting an input that
causes a smaller-than-expected allocation it's possible to write
controlled data out-of-bounds.

Signed-off-by: Vlad Tsyrklevich <vlad@tsyrklevich.net>
Signed-off-by: Doug Ledford <dledford@redhat.com>
2017-04-25 15:18:02 -04:00
..
core infiniband/uverbs: Fix integer overflows 2017-04-25 15:18:02 -04:00
hw infiniband: hns: avoid gcc-7.0.1 warning for uninitialized data 2017-04-25 15:16:38 -04:00
sw {net,IB}/{rxe,usnic}: Utilize generic mac to eui32 function 2017-04-25 14:21:34 -04:00
ulp IB/iser: fix spelling mistake: "unexepected" -> "unexpected" 2017-04-25 14:06:49 -04:00
Kconfig IB/opa-vnic: Virtual Network Interface Controller (VNIC) netdev 2017-04-20 12:01:38 -04:00
Makefile IB/rdmavt: Create module framework and handle driver registration 2016-03-10 20:37:04 -05:00