subject:"\[PATCH 13\/14\] HID\: picolcd_core\: validate output report details"

Re: [PATCH 13/14] HID: picolcd_core: validate output report details

2013-09-04 Thread Jiri Kosina

On Sat, 31 Aug 2013, Bruno Prémont wrote: Hi Kees, Jiri, On Wed, 28 August 2013 Jiri Kosina jkos...@suse.cz wrote: From: Kees Cook keesc...@chromium.org A HID device could send a malicious output report that would cause the picolcd HID driver to trigger a NULL dereference during attr

[PATCH 13/14] HID: picolcd_core: validate output report details

2013-08-28 Thread Jiri Kosina

From: Kees Cook keesc...@chromium.org A HID device could send a malicious output report that would cause the picolcd HID driver to trigger a NULL dereference during attr file writing. CVE-2013-2899 Signed-off-by: Kees Cook keesc...@chromium.org Cc: sta...@kernel.org ---