| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20260120054218.213265-1-aha310510@gmail.com> Date: Tue, 20 Jan 2026 14:42:18 +0900 From: Jeongjun Park <aha310510@...il.com> To: syzbot+64ca69977b37604cd6d9@...kaller.appspotmail.com Cc: linux-kernel@...r.kernel.org, syzkaller-bugs@...glegroups.com Subject: Re: [syzbot] [input?] KASAN: stack-out-of-bounds Read in ft260_smbus_write #syz test upstream master --- drivers/hid/hid-ft260.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/drivers/hid/hid-ft260.c b/drivers/hid/hid-ft260.c index 333341e80b0e..acfd69ed71a0 100644 --- a/drivers/hid/hid-ft260.c +++ b/drivers/hid/hid-ft260.c @@ -471,7 +471,8 @@ static int ft260_smbus_write(struct ft260_device *dev, u8 addr, u8 cmd, struct ft260_i2c_write_request_report *rep = (struct ft260_i2c_write_request_report *)dev->write_buf; - if (data_len >= sizeof(rep->data)) + if (data_len >= sizeof(rep->data) || + data_len >= sizeof(data)) return -EINVAL; rep->address = addr; --
Powered by blists - more mailing lists