malhuda/msm-4.14
1
0
Fork 0
mirror of https://github.com/rd-stuffs/msm-4.14.git synced 2025-02-20 11:45:48 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
msm-4.14/drivers
History
Hans Verkuil eb376a62ac media: vb2: vb2_mmap: move lock up 
commit cd26d1c4d1bc947b56ae404998ae2276df7b39b7 upstream.

If a filehandle is dup()ped, then it is possible to close it from one fd
and call mmap from the other. This creates a race condition in vb2_mmap
where it is using queue data that __vb2_queue_free (called from close())
is in the process of releasing.

By moving up the mutex_lock(mmap_lock) in vb2_mmap this race is avoided
since __vb2_queue_free is called with the same mutex locked. So vb2_mmap
now reads consistent buffer data.

Signed-off-by: Hans Verkuil <hverkuil@xs4all.nl>
Reported-by: syzbot+be93025dd45dccd8923c@syzkaller.appspotmail.com
Signed-off-by: Hans Verkuil <hansverk@cisco.com>
Signed-off-by: Mauro Carvalho Chehab <mchehab+samsung@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2019-01-23 08:09:50 +01:00
..
accessibility
acpi
ACPI / PMIC: xpower: Fix TS-pin current-source handling
2019-01-16 22:07:12 +01:00
amba
android
binder: fix race that allows malicious free of live buffer
2018-12-05 19:41:26 +01:00
ata
libata: whitelist all SAMSUNG MZ7KM* solid-state disks
2018-12-21 14:13:15 +01:00
atm
atm: zatm: Fix potential Spectre v1
2018-07-22 14:28:43 +02:00
auxdisplay
auxdisplay: fix broken menu
2018-07-03 11:24:56 +02:00
base
platform-msi: Free descriptors in platform_msi_domain_free()
2019-01-09 17:14:48 +01:00
bcma
block
rbd: don't return 0 on unmap if RBD_DEV_FLAG_REMOVING is set
2019-01-16 22:07:12 +01:00
bluetooth
Bluetooth: btbcm: Add entry for BCM4335C0 UART bluetooth
2018-11-13 11:14:54 -08:00
bus
bus: arm-cci: remove unnecessary unreachable()
2018-12-01 09:42:49 +01:00
cdrom
cdrom: fix improper type cast, which can leat to information leak.
2018-11-21 09:24:04 +01:00
char
tpm: tpm_i2c_nuvoton: use correct command duration for TPM 2.x
2019-01-09 17:14:53 +01:00
clk
clk: rockchip: fix typo in rk3188 spdif_frac parent
2019-01-09 17:14:50 +01:00
clocksource
clockevents/drivers/i8253: Add support for PIT shutdown quirk
2018-11-21 09:24:11 +01:00
connector
cpufreq
cpufreq: imx6q: add return value check for voltage scale
2018-12-01 09:42:53 +01:00
cpuidle
cpuidle: powernv: Fix promotion from snooze if next state disabled
2018-07-03 11:24:51 +02:00
crypto
crypto: talitos - fix ablkcipher for CONFIG_VMAP_STACK
2019-01-23 08:09:48 +01:00
dax
dev-dax: check_vma: ratelimit dev_info-s
2018-08-24 13:09:08 +02:00
dca
devfreq
dio
dma
dmaengine: cppi41: delete channel from pending list when stop channel
2018-12-13 09:18:52 +01:00
dma-buf
edac
EDAC, skx_edac: Fix logical channel intermediate decoding
2018-11-13 11:15:06 -08:00
eisa
extcon
extcon: Release locking when sending the notification of connector state
2018-09-09 19:55:56 +02:00
firewire
firmware
efi/arm: Revert deferred unmap of early memmap mapping
2018-12-01 09:42:54 +01:00
fmc
fpga
fsi
gpio
gpio: mvebu: only fail on missing clk if pwm is actually to be used
2019-01-13 10:01:01 +01:00
gpu
drm/fb-helper: Partially bring back workaround for bugs of SDL 1.2
2019-01-16 22:07:12 +01:00
hid
HID: ite: Add USB id match for another ITE based keyboard rfkill key quirk
2019-01-13 10:00:56 +01:00
hsi
hv
x86, hyperv: remove PCI dependency
2019-01-13 10:00:59 +01:00
hwmon
hwmon: (w83795) temp4_type has writable permission
2018-12-17 09:28:49 +01:00
hwspinlock
hwtracing
intel_th: msu: Fix an off-by-one in attribute store
2019-01-13 10:01:07 +01:00
i2c
i2c: dev: prevent adapter retries and timeout being set as minus value
2019-01-16 22:07:12 +01:00
ide
ide: pmac: add of_node_put()
2018-12-21 14:13:14 +01:00
idle
intel_idle: Graceful probe failure when MWAIT is disabled
2018-08-09 12:16:39 +02:00
iio
iio/hid-sensors: Fix IIO_CHAN_INFO_RAW returning wrong values for signed numbers
2018-12-17 09:28:49 +01:00
infiniband
rxe: fix error completion wr_id and qp_num
2019-01-13 10:01:06 +01:00
input
Input: synaptics - enable SMBus for HP EliteBook 840 G4
2019-01-13 10:01:01 +01:00
iommu
iommu/vt-d: Handle domain agaw being less than iommu agaw
2019-01-13 10:01:06 +01:00
ipack
irqchip
irqchip/bcm7038-l1: Hide cpu offline callback when building for !SMP
2018-09-15 09:45:29 +02:00
isdn
isdn: fix kernel-infoleak in capi_unlocked_ioctl
2019-01-09 17:14:43 +01:00
leds
lightnvm
lightnvm: pblk: fix two sleep-in-atomic-context bugs
2018-11-13 11:14:52 -08:00
macintosh
macintosh/via-pmu: Add missing mmio accessors
2018-09-19 22:43:41 +02:00
mailbox
mailbox: xgene-slimpro: Fix potential NULL pointer dereference
2018-09-09 19:55:54 +02:00
mcb
md
dm zoned: Fix target BIO completion handling
2019-01-13 10:01:04 +01:00
media
media: vb2: vb2_mmap: move lock up
2019-01-23 08:09:50 +01:00
memory
memory: tegra: Apply interrupts mask per SoC
2018-08-03 07:50:38 +02:00
memstick
message
mfd
mfd: tps6586x: Handle interrupts on suspend
2019-01-23 08:09:49 +01:00
misc
genwqe: Fix size check
2019-01-13 10:01:07 +01:00
mmc
mmc: sdhci-msm: Disable CDR function on TX
2019-01-23 08:09:46 +01:00
mtd
mtd: atmel-quadspi: disallow building on ebsa110
2019-01-09 17:14:47 +01:00
mux
net
bonding: update nest level on unlink
2019-01-23 08:09:47 +01:00
nfc
NFC: nfcmrvl_uart: fix OF child-node lookup
2018-12-01 09:42:54 +01:00
ntb
nubus
nvdimm
libnvdimm, pfn: Pad pfn namespaces relative to other regions
2018-12-13 09:18:54 +01:00
nvme
nvmet-rdma: fix response use after free
2018-12-21 14:13:18 +01:00
nvmem
nvmem: Don't let a NULL cell_id for nvmem_cell_get() crash us
2018-08-24 13:09:14 +02:00
of
OF: properties: add missing of_node_put
2019-01-23 08:09:49 +01:00
oprofile
parisc
parport
parport: sunbpp: fix error return code
2018-09-26 08:38:12 +02:00
pci
PCI: imx6: Fix link training status detection in link up check
2018-12-17 09:28:49 +01:00
pcmcia
pcmcia: Implement CLKRUN protocol disabling for Ricoh bridges
2018-11-13 11:14:46 -08:00
perf
arm64: perf: Reject stand-alone CHAIN events for PMUv3
2018-10-18 09:16:24 +02:00
phy
phy: phy-mtk-tphy: use auto instead of force to bypass utmi signals
2018-08-15 18:12:48 +02:00
pinctrl
pinctrl: meson: fix pull enable register calculation
2019-01-13 10:00:56 +01:00
platform
platform/x86: acerhdf: Add BIOS entry for Gateway LT31 v1.3307
2018-11-27 16:10:47 +01:00
pnp
power
power: supply: olpc_battery: correct the temperature units
2019-01-13 10:01:07 +01:00
powercap
pps
ps3
ptp
ptp: fix Spectre v1 vulnerability
2018-11-10 07:48:34 -08:00
pwm
pwm: meson: Fix mux clock names
2018-09-15 09:45:27 +02:00
rapidio
ras
regulator
regulator: fix crash caused by null driver data
2018-10-03 17:00:55 -07:00
remoteproc
remoteproc: qcom: Fix potential device node leaks
2018-06-21 04:02:48 +09:00
reset
reset: make device_reset_optional() really optional
2018-12-08 13:03:40 +01:00
rpmsg
rpmsg: smd: fix memory leak on channel create
2018-11-13 11:15:12 -08:00
rtc
rtc: m41t80: Correct alarm month range with RTC reads
2019-01-09 17:14:52 +01:00
s390
scsi: zfcp: fix posting too many status read buffers leading to adapter shutdown
2019-01-13 10:01:01 +01:00
sbus
drivers/sbus/char: add of_node_put()
2018-12-21 14:13:13 +01:00
scsi
scsi: sd: Fix cache_type_store()
2019-01-23 08:09:48 +01:00
sfi
sh
sn
soc
soc: ti: QMSS: Fix usage of irq_set_affinity_hint
2018-11-21 09:24:09 +01:00
spi
spi: bcm2835: Unbreak the build of esoteric configs
2019-01-09 17:14:53 +01:00
spmi
ssb
staging
staging: wilc1000: fix missing read_write setting when reading data
2019-01-09 17:14:48 +01:00
target
scsi: target: iscsi: cxgbit: fix csk leak
2019-01-23 08:09:46 +01:00
tc
TC: Set DMA masks for devices
2018-11-13 11:15:11 -08:00
tee
tee: check shm references are consistent in offset/size
2018-06-21 04:02:54 +09:00
thermal
thermal/drivers/hisi: Remove costly sensor inspection
2018-12-08 13:03:40 +01:00
thunderbolt
tty
tty: Don't hold ldisc lock in tty_reopen() if ldisc present
2019-01-23 08:09:45 +01:00
uio
uio: Fix an Oops on load
2018-11-27 16:10:51 +01:00
usb
USB: Add USB_QUIRK_DELAY_CTRL_MSG quirk for Corsair K70 RGB
2019-01-16 22:07:11 +01:00
uwb
uwb: hwa-rc: fix memory leak at probe
2018-10-03 17:00:46 -07:00
vfio
vfio/type1: Fix task tracking for QEMU vCPU hotplug
2018-08-03 07:50:23 +02:00
vhost
vhost/vsock: fix uninitialized vhost_vsock->guest_cid
2019-01-13 10:01:04 +01:00
video
omap2fb: Fix stack memory disclosure
2019-01-23 08:09:49 +01:00
virt
virtio
virtio_balloon: fix increment of vb->num_pfns in fill_balloon()
2018-10-13 09:27:30 +02:00
vlynq
vme
w1
w1: omap-hdq: fix missing bus unregister at removal
2018-11-13 11:15:09 -08:00
watchdog
watchdog: da9063: Fix updating timeout value
2018-08-03 07:50:24 +02:00
xen
Revert "xen/balloon: Mark unallocated host memory as UNUSABLE"
2018-12-17 09:28:53 +01:00
zorro
Kconfig
Makefile