[PATCH v2 1/2] drm/radeon: Fix integer overflow in radeon_cs_parser_init

2023-04-19 Thread hackyzh002
The type of size is unsigned, if size is 0x4000, there will be an integer overflow, size will be zero after size *= sizeof(uint32_t), will cause uninitialized memory to be referenced later Signed-off-by: hackyzh002 --- drivers/gpu/drm/radeon/radeon_cs.c | 2 +- 1 file changed, 1 insertion(+)

Re: [PATCH v2 1/2] drm/radeon: Fix integer overflow in radeon_cs_parser_init

2023-04-19 Thread Christian König
Am 19.04.23 um 10:57 schrieb hackyzh002: The type of size is unsigned, if size is 0x4000, there will be an integer overflow, size will be zero after size *= sizeof(uint32_t), will cause uninitialized memory to be referenced later Signed-off-by: hackyzh002 --- drivers/gpu/drm/radeon/radeon