Kernel/linux-next
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git synced 2025-01-01 10:42:11 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
0e398290cf
linux-next/drivers/vhost
History
Xie Yongji 0e398290cf vhost-vdpa: Fix integer overflow in vhost_vdpa_process_iotlb_update() 
The "msg->iova + msg->size" addition can have an integer overflow
if the iotlb message is from a malicious user space application.
So let's fix it.

Fixes: 1b48dc03e5 ("vhost: vdpa: report iova range")
Reported-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Xie Yongji <xieyongji@bytedance.com>
Acked-by: Jason Wang <jasowang@redhat.com>
Link: https://lore.kernel.org/r/20210728130756.97-1-xieyongji@bytedance.com
Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
2021-08-10 11:52:23 -04:00
..
iotlb.c vhost-iotlb: fix vhost_iotlb_del_range() documentation 2021-07-03 04:50:50 -04:00
Kconfig vhost_vdpa: implement IRQ offloading in vhost_vdpa 2020-08-05 11:08:42 -04:00
Makefile vhost: introduce vDPA-based backend 2020-04-02 10:41:40 -04:00
net.c vhost_net: use XDP helpers 2021-05-14 15:20:10 -07:00
scsi.c vhost-scsi: reduce flushes during endpoint clearing 2021-07-03 04:50:54 -04:00
test.c tools/virtio: Add --reset 2020-06-22 12:34:21 -04:00
test.h tools/virtio: Add --reset 2020-06-22 12:34:21 -04:00
vdpa.c vhost-vdpa: Fix integer overflow in vhost_vdpa_process_iotlb_update() 2021-08-10 11:52:23 -04:00
vhost.c vhost: remove work arg from vhost_work_flush 2021-07-03 04:50:54 -04:00
vhost.h vhost: fix up vhost_work coding style 2021-07-03 04:50:55 -04:00
vringh.c vringh: implement vringh_kiov_advance() 2021-05-03 04:55:53 -04:00
vsock.c vhost: remove work arg from vhost_work_flush 2021-07-03 04:50:54 -04:00