subject:"\[PATCH\] scsi\: qla2xxx\: Fix an integer overflow in sysfs code"

Re: [PATCH] scsi: qla2xxx: Fix an integer overflow in sysfs code

2017-08-30 Thread Eric Dumazet

On Wed, Aug 30, 2017 at 6:12 AM, Greg KH wrote: > On Wed, Aug 30, 2017 at 03:21:07PM +0300, Dan Carpenter wrote: >> The value of "size" comes from the user. When we add "start + size" >> it could lead to an integer overflow bug. >> >> It means we vmalloc() a lot more memory than

Re: [PATCH] scsi: qla2xxx: Fix an integer overflow in sysfs code

2017-08-30 Thread Greg KH

On Wed, Aug 30, 2017 at 03:21:07PM +0300, Dan Carpenter wrote: > The value of "size" comes from the user. When we add "start + size" > it could lead to an integer overflow bug. > > It means we vmalloc() a lot more memory than we had intended. I believe > that on 64 bit systems vmalloc() can

Re: [PATCH] scsi: qla2xxx: Fix an integer overflow in sysfs code

2017-08-30 Thread Dan Carpenter

On Wed, Aug 30, 2017 at 08:28:52PM +0800, shqking wrote: > Hi, > > Glad to see it is fixed. > > Can I apply for a CVE ID for this bug? > We don't handle that on this list. You'd need to ask on oss-secur...@lists.openwall.com. regards, dan carpenter

[PATCH] scsi: qla2xxx: Fix an integer overflow in sysfs code

2017-08-30 Thread Dan Carpenter

The value of "size" comes from the user. When we add "start + size" it could lead to an integer overflow bug. It means we vmalloc() a lot more memory than we had intended. I believe that on 64 bit systems vmalloc() can succeed even if we ask it to allocate huge 4GB buffers. So we would get

Re: [PATCH] scsi: qla2xxx: Fix an integer overflow in sysfs code

Re: [PATCH] scsi: qla2xxx: Fix an integer overflow in sysfs code

Re: [PATCH] scsi: qla2xxx: Fix an integer overflow in sysfs code

[PATCH] scsi: qla2xxx: Fix an integer overflow in sysfs code

4 matches

Site Navigation

Mail list logo

Footer information