Commit f4b21171 authored Feb 20, 2025 by Vikash Garodia Committed by Hans Verkuil Mar 03, 2025

media: venus: hfi: add a check to handle OOB in sfr region



sfr->buf_size is in shared memory and can be modified by malicious user.
OOB write is possible when the size is made higher than actual sfr data
buffer. Cap the size to allocated size for such cases.

Cc: stable@vger.kernel.org
Fixes: d96d3f30 ("[media] media: venus: hfi: add Venus HFI files")
Reviewed-by: Bryan O'Donoghue <bryan.odonoghue@linaro.org>
Signed-off-by: Vikash Garodia <quic_vgarodia@quicinc.com>
Signed-off-by: Hans Verkuil <hverkuil@xs4all.nl>

parent 69baf245

Show whitespace changes

Inline Side-by-side

CodeLinaro @codelinaro
mentioned in commit f68d78b7
· Nov 05, 2025

mentioned in commit f68d78b7

mentioned in commit f68d78b704513580faf28985c84cc61f820acda2

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit b1d30f45
· Nov 05, 2025

mentioned in commit b1d30f45

mentioned in commit b1d30f45b3c1271f940c9cb11068403005a4e15e

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 4c9a3017
· Nov 05, 2025

mentioned in commit 4c9a3017

mentioned in commit 4c9a30176a2fd630f2649e92c7f8d03597ec9100

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit c3c8ab47
· Nov 05, 2025

mentioned in commit c3c8ab47

mentioned in commit c3c8ab47eef56a1d40f9e16d8cede329b6338746

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 0f2dc992
· Nov 05, 2025

mentioned in commit 0f2dc992

mentioned in commit 0f2dc992526ac79eef62ffef3c7dcd9c9b082bdb

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 93355c88
· Nov 05, 2025

mentioned in commit 93355c88

mentioned in commit 93355c8878d9464b0a730679966aebb46baf89e9

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit a8e40098
· Nov 05, 2025

mentioned in commit a8e40098

mentioned in commit a8e400988e16d420d4cc3c9c996d2702d3dbbcdc

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 5d5dea1d
· Nov 05, 2025

mentioned in commit 5d5dea1d

mentioned in commit 5d5dea1df9c1edb75d537f40cbc88694a9a85196

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 97c498e5
· Nov 05, 2025

mentioned in commit 97c498e5

mentioned in commit 97c498e576b18fbee08368c5aa04da8d910b732c

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 6be33fb8
· Nov 05, 2025

mentioned in commit 6be33fb8

mentioned in commit 6be33fb884ba91ba6176bf1f251ae76e0c4bee20

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 9675ac51
· Nov 05, 2025

mentioned in commit 9675ac51

mentioned in commit 9675ac51ceafcaa460b4ee68ece201536d8868b1

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 10b273e4
· Nov 05, 2025

mentioned in commit 10b273e4

mentioned in commit 10b273e4d41bc396d518eb922408684017a53f4c

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 27c9a782
· Nov 05, 2025

mentioned in commit 27c9a782

mentioned in commit 27c9a782f62d1a9810b13bb3cc01e990351e7a6c

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 016be6d9
· Nov 05, 2025

mentioned in commit 016be6d9

mentioned in commit 016be6d9ed7684d14f561929be258f5459c2d3bb

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit c3937986
· Nov 05, 2025

mentioned in commit c3937986

mentioned in commit c39379867891b2d20ed3ce3e4c9d7222ef89d772

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 9341d372
· Nov 05, 2025

mentioned in commit 9341d372

mentioned in commit 9341d37230918997a4ec63a552f24869b761744e

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit d6712dce
· Nov 05, 2025

mentioned in commit d6712dce

mentioned in commit d6712dce24df69e4dc03fe372c8879d3e700b3f5

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit f691f9ad
· Nov 05, 2025

mentioned in commit f691f9ad

mentioned in commit f691f9ad0043d1dc15b0950ee090ded621da795c

Toggle commit list

Please to comment