Fixes a bug reported by syzkaller.
Mmaping a dumb buffer can result in a use-after-free if there is an
error in the return path of the driver specific gem object's mmap()
callback. This is due to improper reference counting in the error path.
The use-after-free occurs when attempting to close the
On 7/30/22 23:25, Helge Deller wrote:
On 7/29/22 08:51, Khalid Masum wrote:
Here is a simplified reproducer for the issue:
https://gist.githubusercontent.com/Labnann/923d6b9b3a19848fc129637b839b8a55/raw/a68271fcc724569735fe27f80817e561b3ff629a/reproducer.c
The reproducer does this:
Thanks f
On Fri, 22 Jul 2022 21:15:39 +0200
Krzysztof Kozlowski wrote:
> The spi-cpha and spi-cpol properties are device specific and should be
> accepted only if device really needs them. Drop them from common
> spi-peripheral-props.yaml schema, mention in few panel drivers which use
> them and include
* Khalid Masum :
> On 7/30/22 23:25, Helge Deller wrote:
> > On 7/29/22 08:51, Khalid Masum wrote:
> > > Here is a simplified reproducer for the issue:
> > >
> > > https://gist.githubusercontent.com/Labnann/923d6b9b3a19848fc129637b839b8a55/raw/a68271fcc724569735fe27f80817e561b3ff629a/reproducer.c
>
On 7/31/22 16:54, Helge Deller wrote:
* Khalid Masum :
On 7/30/22 23:25, Helge Deller wrote:
On 7/29/22 08:51, Khalid Masum wrote:
Here is a simplified reproducer for the issue:
https://gist.githubusercontent.com/Labnann/923d6b9b3a19848fc129637b839b8a55/raw/a68271fcc724569735fe27f80817e561b3f
On 7/31/22 00:50, Helge Deller wrote:
When changing the console font with ioctl(KDFONTOP) the new font size
can be bigger than the previous font. A previous selection may thus now
be outside of the new screen size and thus trigger out-of-bounds
accesses to graphics memory if the selection is remo
https://bugzilla.kernel.org/show_bug.cgi?id=216290
Artem S. Tashkinov (a...@gmx.com) changed:
What|Removed |Added
Status|NEW |RESOLVED
Reso
