| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <171236847476.2627662.10581186530455800083.b4-ty@oracle.com>
Date: Fri, 5 Apr 2024 21:58:33 -0400
From: "Martin K. Petersen" <martin.petersen@...cle.com>
To: Quinn Tran <qutran@...vell.com>, Dan Carpenter <dan.carpenter@...aro.org>
Cc: "Martin K . Petersen" <martin.petersen@...cle.com>,
Nilesh Javali <njavali@...vell.com>,
GR-QLogic-Storage-Upstream@...vell.com,
"James E.J. Bottomley" <jejb@...ux.ibm.com>,
Himanshu Madhani <himanshu.madhani@...cle.com>,
Larry Wisneski <Larry.Wisneski@...vell.com>,
Duane Grigsby <duane.grigsby@...vell.com>, linux-scsi@...r.kernel.org,
linux-kernel@...r.kernel.org, kernel-janitors@...r.kernel.org
Subject: Re: [PATCH] scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()
On Tue, 02 Apr 2024 12:56:54 +0300, Dan Carpenter wrote:
> The app_reply->elem[] array is allocated earlier in this function and it
> has app_req.num_ports elements. Thus this > comparison needs to be >=
> to prevent memory corruption.
>
>
Applied to 6.9/scsi-fixes, thanks!
[1/1] scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()
https://git.kernel.org/mkp/scsi/c/4406e4176f47
--
Martin K. Petersen Oracle Linux Engineering
Powered by blists - more mailing lists