[PATCH] evh_bytechan: fix out of bounds accesses
Scott Wood
swood at redhat.com
Tue Jan 14 12:17:49 AEDT 2020
On Mon, 2020-01-13 at 19:13 -0600, Timur Tabi wrote:
> On 1/13/20 7:10 PM, Timur Tabi wrote:
> > I would prefer that ev_byte_channel_send() is updated to access only
> > 'count' bytes. If that means adding a memcpy to the
> > ev_byte_channel_send() itself, then so be it. Trying to figure out how
> > to stuff n bytes into 4 32-
> > bit registers is probably not worth the effort.
>
> Looks like ev_byte_channel_receive() has the same bug, but in reverse.
It only has one user, which always passes in a 16-byte buffer.
-Scott
More information about the Linuxppc-dev
mailing list