| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <1461814941-28345-1-git-send-email-chunfeng.yun@mediatek.com> Date: Thu, 28 Apr 2016 11:42:20 +0800 From: Chunfeng Yun <chunfeng.yun@...iatek.com> To: Greg Kroah-Hartman <gregkh@...uxfoundation.org> CC: Chunfeng Yun <chunfeng.yun@...iatek.com>, <linux-kernel@...r.kernel.org>, <linux-arm-kernel@...ts.infradead.org>, <linux-usb@...r.kernel.org>, <linux-mediatek@...ts.infradead.org>, Felipe Balbi <felipe.balbi@...ux.intel.com>, Alan Stern <stern@...land.harvard.edu> Subject: [PATCH v2 1/2] usb: core: buffer: avoid NULL pointer dereferrence NULL pointer dereferrence will happen when class driver wants to allocate zero length buffer and pool_max[0] can't be used, so simply returns NULL in the case. Signed-off-by: Chunfeng Yun <chunfeng.yun@...iatek.com> --- drivers/usb/core/buffer.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/drivers/usb/core/buffer.c b/drivers/usb/core/buffer.c index 2741566..98e39f9 100644 --- a/drivers/usb/core/buffer.c +++ b/drivers/usb/core/buffer.c @@ -122,6 +122,9 @@ void *hcd_buffer_alloc( struct usb_hcd *hcd = bus_to_hcd(bus); int i; + if (size == 0) + return NULL; + /* some USB hosts just use PIO */ if (!IS_ENABLED(CONFIG_HAS_DMA) || (!bus->controller->dma_mask && -- 1.7.9.5
Powered by blists - more mailing lists