| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <0c69b711-4c88-4e64-afe7-f7de147a490b@infradead.org> Date: Wed, 7 Jan 2026 15:17:40 -0800 From: Randy Dunlap <rdunlap@...radead.org> To: Raag Jadav <raag.jadav@...el.com>, "Gustavo A. R. Silva" <gustavoars@...nel.org> Cc: Alexander Usyskin <alexander.usyskin@...el.com>, Miquel Raynal <miquel.raynal@...tlin.com>, Richard Weinberger <richard@....at>, Vignesh Raghavendra <vigneshr@...com>, Rodrigo Vivi <rodrigo.vivi@...el.com>, Tomas Winkler <tomasw@...il.com>, linux-mtd@...ts.infradead.org, linux-kernel@...r.kernel.org, linux-hardening@...r.kernel.org Subject: Re: [PATCH] mtd: intel-dg: fix array-index-out-of-bounds in intel_dg_mtd_probe() Hi, On 12/19/25 11:07 PM, Raag Jadav wrote: > On Sat, Dec 20, 2025 at 03:41:49PM +0900, Gustavo A. R. Silva wrote: >> Fix the UBSAN: array-index-out-of-bounds issue below by updating >> counter nvm->nregions before the first access to flexible-array >> member nvm->regions[]. >> >> from kernel bugzilla: >> https://bugzilla.kernel.org/show_bug.cgi?id=220823 >> >> Dec 15 22:01:52 orpheus kernel: UBSAN: array-index-out-of-bounds in /var/tmp/portage/sys-kernel/gentoo-kernel-6.18.1/work/linux-6.18/drivers/mtd/devices/mtd_intel_dg.c:750:15 >> >> Notice that this flexible array is annotated with the counted_by() >> attribute, hence the counter must always be updated before the >> first access to the array. > > Already fixed[1], but not sure if it's landed yet. > > [1] https://lore.kernel.org/linux-mtd/20251111-mtd-nregions-v1-1-61db61e78c63@intel.com/ What's the status of this patch, please? -- ~Randy
Powered by blists - more mailing lists