mirrors
/
linux-stable
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
1
0
Fork 0
Code Issues Releases Wiki Activity
linux-stable/drivers/scsi/qedf
History
Bui Quang Minh d93318f19d scsi: qedf: Ensure the copied buf is NUL terminated 
[ Upstream commit d0184a375e ]

Currently, we allocate a count-sized kernel buffer and copy count from
userspace to that buffer. Later, we use kstrtouint on this buffer but we
don't ensure that the string is terminated inside the buffer, this can
lead to OOB read when using kstrtouint. Fix this issue by using
memdup_user_nul instead of memdup_user.

Fixes: 61d8658b4a ("scsi: qedf: Add QLogic FastLinQ offload FCoE driver framework.")
Signed-off-by: Bui Quang Minh <minhquangbui99@gmail.com>
Link: https://lore.kernel.org/r/20240424-fix-oob-read-v2-4-f1f1b53a10f4@gmail.com
Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
 		2024-06-12 11:03:16 +02:00
..
Kconfig
Makefile
drv_fcoe_fw_funcs.c
drv_fcoe_fw_funcs.h
drv_scsi_fw_funcs.c
drv_scsi_fw_funcs.h
qedf.h
qedf_attr.c
qedf_dbg.c
qedf_dbg.h scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly 2023-09-13 09:42:52 +02:00
qedf_debugfs.c scsi: qedf: Ensure the copied buf is NUL terminated 2024-06-12 11:03:16 +02:00
qedf_els.c
qedf_fip.c
qedf_hsi.h
qedf_io.c scsi: qedf: Add synchronization between I/O completions and abort 2023-10-06 14:56:52 +02:00
qedf_main.c scsi: qedf: Add synchronization between I/O completions and abort 2023-10-06 14:56:52 +02:00
qedf_version.h