subject:"\[PATCH\] vt\: Handle recursion in vc_do_resize\(\)."

Re: [PATCH] vt: Handle recursion in vc_do_resize().

2020-07-29 Thread Daniel Vetter

On Wed, Jul 29, 2020 at 8:58 AM Tetsuo Handa wrote: > > syzbot is reporting OOB read bug in vc_do_resize() [1] caused by memcpy() > based on outdated old_{rows,row_size} values, for resize_screen() can > recurse into vc_do_resize() which changes vc->vc_{cols,rows} that outdates > old_{rows,row_siz

[PATCH] vt: Handle recursion in vc_do_resize().

2020-07-28 Thread Tetsuo Handa

syzbot is reporting OOB read bug in vc_do_resize() [1] caused by memcpy() based on outdated old_{rows,row_size} values, for resize_screen() can recurse into vc_do_resize() which changes vc->vc_{cols,rows} that outdates old_{rows,row_size} values which were read before calling resize_screen(). Mini