]> www.infradead.org Git - users/jedix/linux-maple.git/commit
projects / users / jedix / linux-maple.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 8a9b76b) | patch
scsi: mpt3sas: Fix buffer overflow in mpt3sas_send_mctp_passthru_req()
authorDan Carpenter <dan.carpenter@linaro.org>
Fri, 28 Feb 2025 09:37:28 +0000 (12:37 +0300)
committerMartin K. Petersen <martin.petersen@oracle.com>
Tue, 4 Mar 2025 03:11:47 +0000 (22:11 -0500)
commit0711f1966a523d77d4c5f00776a7bd073d56251a
tree93c10eca27f2b538833f96c11fdfbf438dc7bdc8tree
parent8a9b76b7d9137e15e5036d082cb276c1e8a6e100commit | diff
scsi: mpt3sas: Fix buffer overflow in mpt3sas_send_mctp_passthru_req()

The "sz" argument in mpt3sas_check_cmd_timeout() is the number of u32, not
the number of bytes.  We dump that many u32 values to dmesg.  Passing the
number of bytes will lead to a read overflow.  Divide by 4 to get the
correct value.

Fixes: c72be4b5bb7c ("scsi: mpt3sas: Add support for MCTP Passthrough commands")
Signed-off-by: Dan Carpenter <dan.carpenter@linaro.org>
Link: https://lore.kernel.org/r/02b0d4ff-961c-49ae-921a-5cc469edf93c@stanley.mountain
Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com>
drivers/scsi/mpt3sas/mpt3sas_ctl.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.