This is an automatic generated email to let you know that the following patch were queued at the http://git.linuxtv.org/cgit.cgi/v4l-utils.git tree:
Subject: edid-decode: fix buffer overread while parsing Stereo Display Interface DB Author: Maciej Miszczyk <mmiszc...@logitech.com> Date: Fri Dec 13 11:39:57 2024 +0100 Fix buffer overread while parsing Stereo Display Interface Data Block. Signed-off-by: Maciej Miszczyk <mmiszc...@logitech.com> Signed-off-by: Hans Verkuil <hverk...@xs4all.nl> utils/edid-decode/parse-displayid-block.cpp | 4 ++++ 1 file changed, 4 insertions(+) --- http://git.linuxtv.org/cgit.cgi/v4l-utils.git/commit/?id=8eb254236ac28fc0b441e04c51e8962e9986af8d diff --git a/utils/edid-decode/parse-displayid-block.cpp b/utils/edid-decode/parse-displayid-block.cpp index 6f7d8495c5f2..eb7721e616bd 100644 --- a/utils/edid-decode/parse-displayid-block.cpp +++ b/utils/edid-decode/parse-displayid-block.cpp @@ -939,6 +939,10 @@ void edid_state::parse_displayid_stereo_display_intf(const unsigned char *x) } if (!(x[1] & 0x40)) // Has No Timing Codes return; + if (len < x[3] + 1U) { + fail("Length is smaller than expected (%u < %u)\n", len, x[3] + 1); + return; + } len -= 1 + x[3]; x += 4 + x[3]; while (1U + (x[0] & 0x1f) <= len) {
