Commit 172bf5a9 authored Feb 20, 2025 by Vikash Garodia Committed by Hans Verkuil Mar 03, 2025

media: venus: hfi_parser: add check to avoid out of bound access



There is a possibility that init_codecs is invoked multiple times during
manipulated payload from video firmware. In such case, if codecs_count
can get incremented to value more than MAX_CODEC_NUM, there can be OOB
access. Reset the count so that it always starts from beginning.

Cc: stable@vger.kernel.org
Fixes: 1a73374a ("media: venus: hfi_parser: add common capability parser")
Reviewed-by: Bryan O'Donoghue <bryan.odonoghue@linaro.org>
Signed-off-by: Vikash Garodia <quic_vgarodia@quicinc.com>
Signed-off-by: Hans Verkuil <hverkuil@xs4all.nl>

parent d98e9213

Show whitespace changes

Inline Side-by-side

CodeLinaro @codelinaro
mentioned in commit c8f0ff7b
· Nov 05, 2025

mentioned in commit c8f0ff7b

mentioned in commit c8f0ff7bac617605863ab22bc848377e68c17d39

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit d8f16145
· Nov 05, 2025

mentioned in commit d8f16145

mentioned in commit d8f16145d7ecb73ad5d0ad4920a83c9acd033968

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 85b3fe01
· Nov 05, 2025

mentioned in commit 85b3fe01

mentioned in commit 85b3fe01a1ef96800df1bbba7fa37be0f8bf9daf

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 93c1fabd
· Nov 05, 2025

mentioned in commit 93c1fabd

mentioned in commit 93c1fabd9c905298653ef59107f4c1a323405ee1

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit b70ef278
· Nov 05, 2025

mentioned in commit b70ef278

mentioned in commit b70ef278f86ca9fb8971ecd1635fd4705f8c4d57

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit ae96c048
· Nov 05, 2025

mentioned in commit ae96c048

mentioned in commit ae96c0487ab8bc274daa7096a34f29728161608f

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 7a105fce
· Nov 05, 2025

mentioned in commit 7a105fce

mentioned in commit 7a105fcece670dcbc23d0009c42f83cc12b04017

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit c7d679fa
· Nov 05, 2025

mentioned in commit c7d679fa

mentioned in commit c7d679fa01b891d07e10caffd4f713acb653e7fc

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit f56d6e6c
· Nov 05, 2025

mentioned in commit f56d6e6c

mentioned in commit f56d6e6cd4dc4e8b48cc91196deed3dc53ecda57

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 20b885bc
· Nov 05, 2025

mentioned in commit 20b885bc

mentioned in commit 20b885bcaacbe1afbe4729689a902c447d82b59d

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit a9add14f
· Nov 05, 2025

mentioned in commit a9add14f

mentioned in commit a9add14f78d11c791093db3ea8093d96f07364ee

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit a617d670
· Nov 05, 2025

mentioned in commit a617d670

mentioned in commit a617d670ef3bc3b9e6979daec04a322023830d13

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 1f5999c5
· Nov 05, 2025

mentioned in commit 1f5999c5

mentioned in commit 1f5999c5dafa840842c95923d8ff7c42000b2ef5

Toggle commit list

Please to comment