linux-stable/drivers
Sergey Shtylyov 07cbdb4807 ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()
[ Upstream commit bf476fe22a ]

In an unlikely (and probably wrong?) case that the 'ppi' parameter of
ata_host_alloc_pinfo() points to an array starting with a NULL pointer,
there's going to be a kernel oops as the 'pi' local variable won't get
reassigned from the initial value of NULL. Initialize 'pi' instead to
'&ata_dummy_port_info' to fix the possible kernel oops for good...

Found by Linux Verification Center (linuxtesting.org) with the SVACE static
analysis tool.

Signed-off-by: Sergey Shtylyov <s.shtylyov@omp.ru>
Signed-off-by: Damien Le Moal <damien.lemoal@opensource.wdc.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2022-06-22 14:27:50 +02:00
..
accessibility
acpi ACPI: property: Release subnode properties with data nodes 2022-06-09 10:30:43 +02:00
amba
android
ata ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() 2022-06-22 14:27:50 +02:00
atm
auxdisplay
base x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data 2022-06-16 13:32:04 +02:00
bcma
block nbd: fix io hung while disconnecting device 2022-06-14 18:45:14 +02:00
bluetooth Bluetooth: btmtksdio: fix the reset takes too long 2022-06-09 10:30:13 +02:00
bus bus: ti-sysc: Fix warnings for unbind for serial 2022-06-14 18:44:52 +02:00
cdrom
char random: account for arch randomness in bits 2022-06-14 18:45:20 +02:00
clk clk: tegra: Add missing reset deassertion 2022-06-09 10:30:54 +02:00
clocksource clocksource/drivers/sp804: Avoid error on multiple instances 2022-06-14 18:45:11 +02:00
comedi
connector
counter
cpufreq cpufreq: mediatek: Unregister platform device on exit 2022-06-09 10:30:35 +02:00
cpuidle cpuidle: riscv-sbi: Fix code to allow a genpd governor to be used 2022-06-09 10:30:18 +02:00
crypto crypto: sun8i-ss - handle zero sized sg 2022-06-09 10:30:30 +02:00
cxl cxl/mem: Drop mem_enabled check from wait_for_media() 2022-06-09 10:30:31 +02:00
dax
dca
devfreq PM / devfreq: rk3399_dmc: Disable edev on remove() 2022-06-09 10:29:48 +02:00
dio
dma dmaengine: idxd: add missing callback function to support DMA_INTERRUPT 2022-06-14 18:45:21 +02:00
dma-buf dma-buf: ensure unique directory name for dmabuf stats 2022-05-13 13:35:10 +02:00
edac EDAC/dmc520: Don't print an error for each unconfigured interrupt line 2022-06-09 10:29:59 +02:00
eisa
extcon extcon: Modify extcon device to be created after driver data is set 2022-06-14 18:45:11 +02:00
firewire
firmware firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle 2022-06-14 18:44:52 +02:00
fpga
fsi
gnss
gpio gpio: pca953x: use the correct register address to do regcache sync 2022-06-14 18:44:59 +02:00
gpu drm/amdkfd: add pinned BOs to kfd_bo_list 2022-06-22 14:27:50 +02:00
greybus
hid HID: amd_sfh: Modify the hid name 2022-06-09 10:30:09 +02:00
hsi
hv Drivers: hv: vmbus: Fix handling of messages with transaction ID of zero 2022-06-09 10:30:26 +02:00
hwmon hwmon: (pmbus) Check PEC support before reading other registers 2022-06-09 10:30:19 +02:00
hwspinlock
hwtracing coresight: cpu-debug: Replace mutex with mutex_trylock on panic notifier 2022-06-14 18:44:50 +02:00
i2c i2c: cadence: Increase timeout per message if necessary 2022-06-14 18:45:02 +02:00
i3c
idle cpuidle,intel_idle: Fix CPUIDLE_FLAG_IRQ_ENABLE 2022-06-14 18:45:19 +02:00
iio iio: st_sensors: Add a local lock for protecting odr 2022-06-14 18:45:08 +02:00
infiniband RDMA/rxe: Generate a completion for unsupported/invalid opcode 2022-06-09 10:30:56 +02:00
input Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag 2022-06-14 18:45:19 +02:00
interconnect
iommu iommu/arm-smmu-v3: check return value after calling platform_get_resource() 2022-06-14 18:45:01 +02:00
ipack
irqchip irqchip: irq-xtensa-mx: fix initial IRQ affinity 2022-06-09 10:30:50 +02:00
isdn
leds
macintosh macintosh: via-pmu and via-cuda need RTC_LIB 2022-06-09 10:30:32 +02:00
mailbox mailbox: forward the hrtimer if not queued and under a lock 2022-06-09 10:30:33 +02:00
mcb
md md/raid0: Ignore RAID0 layout if the second zone has only one device 2022-06-14 18:45:21 +02:00
media media: coda: Add more H264 levels for CODA960 2022-06-09 10:30:49 +02:00
memory memory: samsung: exynos5422-dmc: Avoid some over memory allocation 2022-06-09 10:30:21 +02:00
memstick
message
mfd mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe() 2022-06-09 10:30:33 +02:00
misc misc: rtsx: set NULL intfdata when probe fails 2022-06-14 18:45:10 +02:00
mmc mmc: block: Fix CQE recovery reset success 2022-06-14 18:45:18 +02:00
most
mtd ubi: ubi_create_volume: Fix use-after-free when volume creation failed 2022-06-14 18:44:55 +02:00
mux
net net/mlx5: E-Switch, pair only capable devices 2022-06-14 18:45:21 +02:00
nfc nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION 2022-06-14 18:45:19 +02:00
ntb
nubus
nvdimm mce: fix set_mce_nospec to always unmap the whole page 2022-06-09 10:30:31 +02:00
nvme nvme: set dma alignment to dword 2022-06-09 10:30:14 +02:00
nvmem
of of: overlay: do not break notify on NOTIFY_{OK|STOP} 2022-06-09 10:30:02 +02:00
opp OPP: call of_node_put() on error path in _bandwidth_supported() 2022-06-09 10:30:34 +02:00
parisc
parport
pci Revert "PCI: brcmstb: Split brcm_pcie_setup() into two funcs" 2022-06-14 18:45:14 +02:00
pcmcia pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards 2022-06-14 18:44:44 +02:00
peci
perf
phy phy: qcom-qmp: fix pipe-clock imbalance on power-on failure 2022-06-14 18:44:48 +02:00
pinctrl pinctrl/rockchip: support setting input-enable param 2022-06-09 10:30:57 +02:00
platform platform/x86: hp-wmi: Use zero insize parameter only when supported 2022-06-14 18:45:16 +02:00
pnp
power extcon: Fix extcon_get_extcon_dev() error handling 2022-06-14 18:45:11 +02:00
powercap
pps
ps3
ptp ptp: ocp: change sysfs attr group handling 2022-05-18 21:44:37 -07:00
pwm pwm: raspberrypi-poe: Fix endianness in firmware struct 2022-06-14 18:44:46 +02:00
rapidio
ras
regulator regulator: scmi: Fix refcount leak in scmi_regulator_probe 2022-06-09 10:30:15 +02:00
remoteproc remoteproc: imx_rproc: Ignore create mem entry for resource table 2022-06-14 18:44:46 +02:00
reset
rpmsg rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails 2022-06-14 18:44:48 +02:00
rtc rtc: ftrtc010: Fix error handling in ftrtc010_rtc_probe 2022-06-14 18:44:51 +02:00
s390 s390/stp: clock_delta should be signed 2022-06-09 10:30:45 +02:00
sbus
scsi scsi: lpfc: Address NULL pointer dereference after starget_to_rport() 2022-06-14 18:45:17 +02:00
sh
siox
slimbus
soc soc: rockchip: Fix refcount leak in rockchip_grf_init 2022-06-14 18:44:50 +02:00
soundwire soundwire: qcom: adjust autoenumeration timeout 2022-06-14 18:45:10 +02:00
spi spi: fsi: Fix spurious timeout 2022-06-14 18:44:54 +02:00
spmi
ssb
staging staging: rtl8712: fix uninit-value in r871xu_drv_init() 2022-06-14 18:45:11 +02:00
target target: remove an incorrect unmap zeroes data deduction 2022-06-09 10:29:59 +02:00
tc
tee
thermal thermal: devfreq_cooling: use local ops instead of global ops 2022-06-09 10:30:50 +02:00
thunderbolt thunderbolt: Use different lane for second DisplayPort tunnel 2022-06-14 18:45:09 +02:00
tty serial: msm_serial: disable interrupts in __msm_console_write() 2022-06-14 18:45:11 +02:00
uio
usb extcon: Fix extcon_get_extcon_dev() error handling 2022-06-14 18:45:11 +02:00
vdpa vduse: Fix NULL pointer dereference on sysfs access 2022-06-14 18:45:19 +02:00
vfio
vhost vringh: Fix loop descriptors check in the indirect cases 2022-06-14 18:45:15 +02:00
video video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove() 2022-06-14 18:45:02 +02:00
virt
virtio virtio: pci: Fix an error handling path in vp_modern_probe() 2022-06-14 18:44:57 +02:00
visorbus
vlynq
vme
w1
watchdog watchdog: wdat_wdt: Stop watchdog when rebooting the system 2022-06-14 18:45:11 +02:00
xen xen: unexport __init-annotated xen_xlate_map_ballooned_pages() 2022-06-14 18:45:05 +02:00
zorro
Kconfig
Makefile