malhuda/msm-4.14
1
0
Fork 0
mirror of https://github.com/rd-stuffs/msm-4.14.git synced 2025-02-20 11:45:48 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
msm-4.14/drivers/crypto/cavium
History
Dan Carpenter c4d4c2afd0 crypto: cavium - prevent integer overflow loading firmware 
[ Upstream commit 2526d6bf27d15054bb0778b2f7bc6625fd934905 ]

The "code_length" value comes from the firmware file.  If your firmware
is untrusted realistically there is probably very little you can do to
protect yourself.  Still we try to limit the damage as much as possible.
Also Smatch marks any data read from the filesystem as untrusted and
prints warnings if it not capped correctly.

The "ntohl(ucode->code_length) * 2" multiplication can have an
integer overflow.

Fixes: 9e2c7d99941d ("crypto: cavium - Add Support for Octeon-tx CPT Engine")
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2022-10-26 13:17:08 +02:00
..
cpt
crypto: cavium - prevent integer overflow loading firmware
2022-10-26 13:17:08 +02:00
nitrox
crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is fully iterated
2020-06-20 10:25:01 +02:00
zip
crypto: cavium/zip - Add missing single_release()
2019-10-11 18:18:33 +02:00
Makefile