]> www.infradead.org Git - users/jedix/linux-maple.git/commit
projects / users / jedix / linux-maple.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 77e2cc3) | patch
vfio-pci: Fix possible integer overflow
authorAlex Williamson <alex.williamson@redhat.com>
Tue, 26 Mar 2013 17:33:16 +0000 (11:33 -0600)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Fri, 12 Apr 2013 16:52:12 +0000 (09:52 -0700)
commit7c852afafa3bf8daeaee5c60399d55c13618ac8a
tree9f099960778463cbaac04902116d766b5135efa5tree
parent77e2cc382c06a8be48f80e769991e9a4b36a03cecommit | diff
vfio-pci: Fix possible integer overflow

commit 904c680c7bf016a8619a045850937427f8d7368c upstream.

The VFIO_DEVICE_SET_IRQS ioctl takes a start and count parameter, both
of which are unsigned.  We attempt to bounds check these, but fail to
account for the case where start is a very large number, allowing
start + count to wrap back into the valid range.  Bounds check both
start and start + count.

Reported-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Alex Williamson <alex.williamson@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
drivers/vfio/pci/vfio_pci.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.