vfio/platform: check the bounds of read/write syscalls - linux/linux-stable.git

diff options

author	Alex Williamson <alex.williamson@redhat.com>	2025-01-22 10:38:30 -0700
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2025-02-17 11:36:52 +0100
commit	198090eb6f5f094cf3a268c3c30ef1e9c84a6dbe (patch)
tree	594a780fab747d78cebae242c0e34dc437fec814 /kernel/trace/trace_functions_graph.c
parent	89048e12a3d892bb3713c7670fa3bfc0c017c33a (diff)

vfio/platform: check the bounds of read/write syscalls

commit ce9ff21ea89d191e477a02ad7eabf4f996b80a69 upstream. count and offset are passed from user space and not checked, only offset is capped to 40 bits, which can be used to read/write out of bounds of the device. Fixes: 6e3f26456009 (“vfio/platform: read and write support for the device fd”) Cc: stable@vger.kernel.org Reported-by: Mostafa Saleh <smostafa@google.com> Reviewed-by: Eric Auger <eric.auger@redhat.com> Reviewed-by: Mostafa Saleh <smostafa@google.com> Tested-by: Mostafa Saleh <smostafa@google.com> Signed-off-by: Alex Williamson <alex.williamson@redhat.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'kernel/trace/trace_functions_graph.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: