Re: [PATCH v2] drm/dumb-buffers: Integer overflow in drm_mode_create_ioctl()

Dan Carpenter Wed, 16 May 2018 08:42:47 -0700

Btw, I've looked at this some more and I'm 99% sure there is no way to
exploit it.  The "if (PAGE_ALIGN(size) == 0)" prevents the integer
overflow in __vgem_gem_create() that I was worried about.


regards,
dan carpenter


_______________________________________________
dri-devel mailing list
dri-devel@lists.freedesktop.org
https://lists.freedesktop.org/mailman/listinfo/dri-devel

Re: [PATCH v2] drm/dumb-buffers: Integer overflow in drm_mode_create_ioctl()

Reply via email to