Commit a732502b authored Aug 04, 2025 by Kees Cook Committed by Greg Kroah-Hartman Aug 28, 2025

iommu/amd: Avoid stack buffer overflow from kernel cmdline



[ Upstream commit 8503d0fc ]

While the kernel command line is considered trusted in most environments,
avoid writing 1 byte past the end of "acpiid" if the "str" argument is
maximum length.

Reported-by: Simcha Kosman <simcha.kosman@cyberark.com>
Closes: https://lore.kernel.org/all/AS8P193MB2271C4B24BCEDA31830F37AE84A52@AS8P193MB2271.EURP193.PROD.OUTLOOK.COM


Fixes: b6b26d86 ("iommu/amd: Add a length limitation for the ivrs_acpihid command-line parameter")
Signed-off-by: Kees Cook <kees@kernel.org>
Reviewed-by: Ankit Soni <Ankit.Soni@amd.com>
Link: https://lore.kernel.org/r/20250804154023.work.970-kees@kernel.org


Signed-off-by: Joerg Roedel <joerg.roedel@amd.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>

parent ad8a9d38

Show whitespace changes

Inline Side-by-side

CodeLinaro @codelinaro
mentioned in commit bd0e4cef
· Nov 05, 2025

mentioned in commit bd0e4cef

mentioned in commit bd0e4cef233d7f95e320d36ced31a23b952ab0cd

Toggle commit list

Please to comment