| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <165822601287.18997.9680200835498152031.git-patchwork-notify@kernel.org>
Date: Tue, 19 Jul 2022 10:20:12 +0000
From: patchwork-bot+netdevbpf@...nel.org
To: Hristo Venev <hristo@...ev.name>
Cc: netdev@...r.kernel.org, ajit.khaparde@...adcom.com,
sriharsha.basavapatna@...adcom.com, somnath.kotur@...adcom.com,
davem@...emloft.net, edumazet@...gle.com, kuba@...nel.org,
pabeni@...hat.com, mark.leonard@...lex.com,
sathya.perla@...lex.com, Suresh.Reddy@...lex.com,
linux-kernel@...r.kernel.org
Subject: Re: [PATCH] be2net: Fix buffer overflow in be_get_module_eeprom
Hello:
This patch was applied to netdev/net.git (master)
by Paolo Abeni <pabeni@...hat.com>:
On Sat, 16 Jul 2022 11:51:34 +0300 you wrote:
> be_cmd_read_port_transceiver_data assumes that it is given a buffer that
> is at least PAGE_DATA_LEN long, or twice that if the module supports SFF
> 8472. However, this is not always the case.
>
> Fix this by passing the desired offset and length to
> be_cmd_read_port_transceiver_data so that we only copy the bytes once.
>
> [...]
Here is the summary with links:
- be2net: Fix buffer overflow in be_get_module_eeprom
https://git.kernel.org/netdev/net/c/d7241f679a59
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
Powered by blists - more mailing lists