[PATCH] net/bluetooth: Fix bound check in event handling

hci_inquiry_result_with_rssi_evt() can perform out of bound reads on skb->data as a bound check is missing. Signed-off-by: Tomas Bortoli Reported-by: syzbot+cec7a50c412a2c03f...@syzkaller.appspotmail.com Reported-by: syzbot+660883c56e2fa65d4...@syzkaller.appspotmail.com --- v2: - chan

Re: [PATCH] net/bluetooth: Fix bound check in event handling

Hi Dan, On 3/4/19 4:04 PM, Dan Carpenter wrote: > Hi Tomas, > > url: > https://github.com/0day-ci/linux/commits/Tomas-Bortoli/net-bluetooth-Fix-bound-check-in-event-handling/20190301-213647 > base: > https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-

Re: [PATCH] net/bluetooth: Fix bound check in event handling

Hi Marcel, On 3/2/19 5:46 PM, Marcel Holtmann wrote: > Hi Tomas, > >> hci_inquiry_result_with_rssi_evt() can perform out of bound reads >> on skb->data as a bound check is missing. >> >> Signed-off-by: Tomas Bortoli >> Reported-by: syzbot+cec7a50

[PATCH] net/bluetooth: Fix bound check in event handling

hci_inquiry_result_with_rssi_evt() can perform out of bound reads on skb->data as a bound check is missing. Signed-off-by: Tomas Bortoli Reported-by: syzbot+cec7a50c412a2c03f...@syzkaller.appspotmail.com Reported-by: syzbot+660883c56e2fa65d4...@syzkaller.appspotmail.com --- Syzkaler repo

Re: [PATCH 1/3] 9p/net: implement asynchronous rpc

On 12/17/18 12:01 PM, Dominique Martinet wrote: > Tomas Bortoli wrote on Mon, Dec 17, 2018: >> sorry for the delay, I've been quite busy these days. > > No problem. > >> The patches looks good to me and should indeed speed up the code a bit. >> I quickly test

Re: [PATCH 1/3] 9p/net: implement asynchronous rpc

haven't been replied to > > Signed-off-by: Dominique Martinet > Cc: Eric Van Hensbergen > Cc: Latchesar Ionkov > Cc: Tomas Bortoli > Cc: Dmitry Vyukov > --- > > I've been sitting on these patches for almost a month now because I > wanted to fix the canc

Re: [PATCH 1/3] 9p/net: implement asynchronous rpc

haven't been replied to > > Signed-off-by: Dominique Martinet > Cc: Eric Van Hensbergen > Cc: Latchesar Ionkov > Cc: Tomas Bortoli > Cc: Dmitry Vyukov > --- > > I've been sitting on these patches for almost a month now because I > wanted to fix the canc

Re: [PATCH] 9p: validate PDU length

On 07/25/2018 06:11 AM, Dominique Martinet wrote: > Tomas Bortoli wrote on Mon, Jul 23, 2018: >> diff --git a/net/9p/client.c b/net/9p/client.c >> index 18c5271910dc..92240ccf476b 100644 >> --- a/net/9p/client.c >> +++ b/net/9p/client.c >> @@ -524,6 +525,12 @@