subject:"\[PATCH\] usbvision fix overflow of interfaces array"

Re: [PATCH] usbvision fix overflow of interfaces array

2015-11-18 Thread Vladis Dronov

An HTTP URL for the alternate patch mentioned: http://www.spinics.net/lists/linux-media/msg94831.html Best regards, Vladis Dronov | Red Hat, Inc. | Product Security Engineer -- To unsubscribe from this list: send the line "unsubscribe linux-media" in the body of a message to

Re: [PATCH] usbvision fix overflow of interfaces array

2015-11-16 Thread Vladis Dronov

Hello, Oliver, all. Unfortunately, there are at least 4 different concerns about this patch: 1) "!dev->actconfig->interface[ifnum]" won't catch a case where the value is not NULL but some garbage. This way the system may crash with "general protection fault" later. I've hit this case during my

[PATCH] usbvision fix overflow of interfaces array

2015-10-27 Thread Oliver Neukum

This fixes the crash reported in: http://seclists.org/bugtraq/2015/Oct/35 The interface number needs a sanity check. Signed-off-by: Oliver Neukum --- drivers/media/usb/usbvision/usbvision-video.c | 7 +++ 1 file changed, 7 insertions(+) diff --git

Re: [PATCH] usbvision fix overflow of interfaces array

Re: [PATCH] usbvision fix overflow of interfaces array

[PATCH] usbvision fix overflow of interfaces array

3 matches

Site Navigation

Mail list logo

Footer information