* Re: [PATCH] cdrom: fix improper type cast, which can leat to information leak.
[not found] <HK0PR01MB2163BC120E665DA622CEFCA6ADE90@HK0PR01MB2163.apcprd01.prod.exchangelabs.com>
@ 2018-10-03 16:21 ` Jens Axboe
0 siblings, 0 replies; only message in thread
From: Jens Axboe @ 2018-10-03 16:21 UTC (permalink / raw)
To: Yang Xiao; +Cc: linux-kernel
On 10/3/18 6:54 AM, Yang Xiao wrote:
> From: Young_X <YangX92@hotmail.com>
>
> There is another cast from unsigned long to int which causes
> a bounds check to fail with specially crafted input. The value is
> then used as an index in the slot array in cdrom_slot_status().
>
> This issue is similar to CVE-2018-16658 and CVE-2018-10940.
Applied, thanks.
--
Jens Axboe
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2018-10-03 16:21 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
[not found] <HK0PR01MB2163BC120E665DA622CEFCA6ADE90@HK0PR01MB2163.apcprd01.prod.exchangelabs.com>
2018-10-03 16:21 ` [PATCH] cdrom: fix improper type cast, which can leat to information leak Jens Axboe
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).