| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <82e0041b-be4b-1681-c016-d4eeea37abea@xs4all.nl>
Date: Thu, 12 Mar 2020 12:26:35 +0100
From: Hans Verkuil <hverkuil@...all.nl>
To: Johan Hovold <johan@...nel.org>,
Mauro Carvalho Chehab <mchehab@...nel.org>
Cc: Sean Young <sean@...s.org>, linux-media@...r.kernel.org,
linux-usb@...r.kernel.org, linux-kernel@...r.kernel.org
Subject: Re: [PATCH 0/6] media: fix USB descriptor issues
On 3/12/20 12:23 PM, Johan Hovold wrote:
> On Fri, Feb 14, 2020 at 09:02:54AM +0100, Johan Hovold wrote:
>> On Fri, Jan 03, 2020 at 05:35:07PM +0100, Johan Hovold wrote:
>>> This series fixes a number of issues due to missing or incomplete sanity
>>> checks that could lead to NULL-pointer dereferences, memory corruption
>>> or driver misbehaviour when a device has unexpected descriptors.
>>
>>> Johan Hovold (6):
>>> media: flexcop-usb: fix endpoint sanity check
>>> media: ov519: add missing endpoint sanity checks
>>> media: stv06xx: add missing descriptor sanity checks
>>> media: xirlink_cit: add missing descriptor sanity checks
>>> media: dib0700: fix rc endpoint lookup
>>> media: iguanair: fix endpoint sanity check
>>
>> Just sending a reminder about these as it seems only the last one has
>> made into mainline (and stable) yet.
>
> Another month, another reminder. Three of the above patches still hasn't
> been applied.
I've delegated these to me and will make a PR today/tomorrow.
Regards,
Hans
Powered by blists - more mailing lists