Minki/linux
1
0
Fork 1
mirror of https://github.com/torvalds/linux.git synced 2024-11-29 23:51:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
618de0f4ef
linux/sound/core/oss
History
Takashi Iwai 175b8d89fe ALSA: pcm: oss: Fix potential out-of-bounds shift 
syzbot spotted a potential out-of-bounds shift in the PCM OSS layer
where it calculates the buffer size with the arbitrary shift value
given via an ioctl.

Add a range check for avoiding the undefined behavior.
As the value can be treated by a signed integer, the max shift should
be 30.

Reported-by: syzbot+df7dc146ebdd6435eea3@syzkaller.appspotmail.com
Cc: <stable@vger.kernel.org>
Link: https://lore.kernel.org/r/20201209084552.17109-2-tiwai@suse.de
Signed-off-by: Takashi Iwai <tiwai@suse.de>
2020-12-14 09:10:39 +01:00
..
copy.c ALSA: Kill snd_assert() in sound/core/* 2008-08-13 11:46:35 +02:00
io.c ALSA: pcm: Build OSS writev/readv helpers conditionally 2017-06-02 19:38:26 +02:00
linear.c ALSA: pcm: oss: Avoid potential buffer overflows 2019-12-04 15:51:30 +01:00
Makefile License cleanup: add SPDX GPL-2.0 license identifier to files with no license 2017-11-02 11:10:55 +01:00
mixer_oss.c ALSA: oss: More constifications 2020-01-05 16:14:58 +01:00
mulaw.c ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check 2020-09-01 15:18:33 +02:00
pcm_oss.c ALSA: pcm: oss: Fix potential out-of-bounds shift 2020-12-14 09:10:39 +01:00
pcm_plugin.c ALSA: Use fallthrough pseudo-keyword 2020-07-09 13:01:29 +02:00
pcm_plugin.h ALSA: Replace zero-length array with flexible-array 2020-05-07 22:30:36 +02:00
rate.c ALSA: core: Replace zero-length array with flexible-array member 2020-02-12 08:14:43 +01:00
route.c ALSA: pcm: oss: Avoid potential buffer overflows 2019-12-04 15:51:30 +01:00