Kernel/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2025-01-16 10:17:32 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,295,700 Commits 106 Branches 5,192 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Aleksandr Mishin febccb3925 nfc: pn533: Add poll mod list filling check 
In case of im_protocols value is 1 and tm_protocols value is 0 this
combination successfully passes the check
'if (!im_protocols && !tm_protocols)' in the nfc_start_poll().
But then after pn533_poll_create_mod_list() call in pn533_start_poll()
poll mod list will remain empty and dev->poll_mod_count will remain 0
which lead to division by zero.

Normally no im protocol has value 1 in the mask, so this combination is
not expected by driver. But these protocol values actually come from
userspace via Netlink interface (NFC_CMD_START_POLL operation). So a
broken or malicious program may pass a message containing a "bad"
combination of protocol parameter values so that dev->poll_mod_count
is not incremented inside pn533_poll_create_mod_list(), thus leading
to division by zero.
Call trace looks like:
nfc_genl_start_poll()
  nfc_start_poll()
    ->start_poll()
    pn533_start_poll()

Add poll mod list filling check.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Fixes: dfccd0f58044 ("NFC: pn533: Add some polling entropy")
Signed-off-by: Aleksandr Mishin <amishin@t-argos.ru>
Acked-by: Krzysztof Kozlowski <krzysztof.kozlowski@linaro.org>
Link: https://patch.msgid.link/20240827084822.18785-1-amishin@t-argos.ru
Signed-off-by: Paolo Abeni <pabeni@redhat.com>
2024-08-29 12:08:44 +02:00
arch
Driver core fixes for 6.11-rc4
2024-08-18 10:19:49 -07:00
block
block: Fix lockdep warning in blk_mq_mark_tag_wait
2024-08-15 19:25:03 -06:00
certs
kbuild: use $(src) instead of $(srctree)/$(src) for source directory
2024-05-10 04:34:52 +09:00
crypto
crypto: testmgr - generate power-of-2 lengths more often
2024-07-13 11:50:28 +12:00
Documentation
net: drop special comment style
2024-08-23 10:21:02 +01:00
drivers
nfc: pn533: Add poll mod list filling check
2024-08-29 12:08:44 +02:00
fs
Changes since last update:
2024-08-22 06:06:09 +08:00
include
netfilter pull request 24-08-28
2024-08-29 11:35:54 +02:00
init
Rust fixes for v6.11
2024-08-16 11:24:06 -07:00
io_uring
io_uring/sqpoll: annotate debug task == current with data_race()
2024-08-13 06:10:59 -06:00
ipc
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
kernel
printk fixup for 6.11-rc5
2024-08-19 09:26:35 -07:00
lib
bcachefs fixes for 6.11-rc4
2024-08-17 09:46:10 -07:00
LICENSES
LICENSES: Add the copyleft-next-0.3.1 license
2022-11-08 15:44:01 +01:00
mm
16 hotfixes. All except one are for MM. 10 of these are cc:stable and
2024-08-17 19:50:16 -07:00
net
mptcp: pm: ADD_ADDR 0 is not a new address
2024-08-29 10:39:50 +02:00
rust
Rust fixes for v6.11
2024-08-16 11:24:06 -07:00
samples
treewide: remove unnecessary <linux/version.h> inclusion
2024-08-12 18:36:44 +09:00
scripts
net: drop special comment style
2024-08-23 10:21:02 +01:00
security
KEYS: trusted: dcp: fix leak of blob encryption key
2024-08-15 22:01:14 +03:00
sound
Kbuild fixes for v6.11 (2nd)
2024-08-23 07:43:15 +08:00
tools
selftests: mptcp: join: check re-re-adding ID 0 signal
2024-08-29 10:39:50 +02:00
usr
initramfs: shorten cmd_initfs in usr/Makefile
2024-07-16 01:07:52 +09:00
virt
KVM: x86: Disallow read-only memslots for SEV-ES and SEV-SNP (and TDX)
2024-08-14 12:28:24 -04:00
.clang-format
Docs: Move clang-format from process/ to dev-tools/
2024-06-26 16:36:00 -06:00
.cocciconfig
scripts: add Linux .cocciconfig for coccinelle
2016-07-22 12:13:39 +02:00
.editorconfig
.editorconfig: remove trim_trailing_whitespace option
2024-06-13 16:47:52 +02:00
.get_maintainer.ignore
Add Jeff Kirsher to .get_maintainer.ignore
2024-03-08 11:36:54 +00:00
.gitattributes
.gitattributes: set diff driver for Rust source code files
2023-05-31 17:48:25 +02:00
.gitignore
kbuild: add script and target to generate pacman package
2024-07-22 01:24:22 +09:00
.mailmap
mailmap: update entry for Sriram Yagnaraman
2024-08-29 10:53:46 +02:00
.rustfmt.toml
rust: add .rustfmt.toml
2022-09-28 09:02:20 +02:00
COPYING
COPYING: state that all contributions really are covered by this file
2020-02-10 13:32:20 -08:00
CREDITS
tracing: Update of MAINTAINERS and CREDITS file
2024-07-18 14:08:42 -07:00
Kbuild
Kbuild updates for v6.1
2022-10-10 12:00:45 -07:00
Kconfig
kbuild: ensure full rebuild when the compiler is updated
2020-05-12 13:28:33 +09:00
MAINTAINERS
MAINTAINERS: Mark JME Network Driver as Odd Fixes
2024-08-22 15:23:42 +02:00
Makefile
Kbuild fixes for v6.11 (2nd)
2024-08-23 07:43:15 +08:00
README
README: Fix spelling
2024-03-18 03:36:32 -06:00

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the reStructuredText markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
Description
Linux kernel stable tree
Readme 6.1 GiB
Languages
C 97.5%
Assembly 1%
Shell 0.6%
Python 0.3%
Makefile 0.3%