CVSROOT: /cvs Module name: src Changes by: kir...@cvs.openbsd.org 2025/04/03 05:02:44
Modified files:
sys/dev/usb : usbdi.c
Log message:
sys/usb: fix potential buffer overflow from oversized USB chunks
If a device announces it will send n bytes but then actually sends a
chunk larger than n bytes, a kernel without DIAGNOSTIC appears to
overwrite memory past the buffer boundary. Conversely, with DIAGNOSTIC
enabled, this memory overwrite does not occur.
OK: mpi@
