hollalinux
/
linux-sg2042
mirror of https://github.com/sophgo/linux-riscv.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
linux-sg2042/drivers/parport
History
tuhaowen b579ea3516 dev/parport: fix the array out-of-bounds risk 
commit ab11dac93d upstream.

Fixed array out-of-bounds issues caused by sprintf
by replacing it with snprintf for safer data copying,
ensuring the destination buffer is not overflowed.

Below is the stack trace I encountered during the actual issue:

[ 66.575408s] [pid:5118,cpu4,QThread,4]Kernel panic - not syncing: stack-protector:
Kernel stack is corrupted in: do_hardware_base_addr+0xcc/0xd0 [parport]
[ 66.575408s] [pid:5118,cpu4,QThread,5]CPU: 4 PID: 5118 Comm:
QThread Tainted: G S W O 5.10.97-arm64-desktop #7100.57021.2
[ 66.575439s] [pid:5118,cpu4,QThread,6]TGID: 5087 Comm: EFileApp
[ 66.575439s] [pid:5118,cpu4,QThread,7]Hardware name: HUAWEI HUAWEI QingYun
PGUX-W515x-B081/SP1PANGUXM, BIOS 1.00.07 04/29/2024
[ 66.575439s] [pid:5118,cpu4,QThread,8]Call trace:
[ 66.575469s] [pid:5118,cpu4,QThread,9] dump_backtrace+0x0/0x1c0
[ 66.575469s] [pid:5118,cpu4,QThread,0] show_stack+0x14/0x20
[ 66.575469s] [pid:5118,cpu4,QThread,1] dump_stack+0xd4/0x10c
[ 66.575500s] [pid:5118,cpu4,QThread,2] panic+0x1d8/0x3bc
[ 66.575500s] [pid:5118,cpu4,QThread,3] __stack_chk_fail+0x2c/0x38
[ 66.575500s] [pid:5118,cpu4,QThread,4] do_hardware_base_addr+0xcc/0xd0 [parport]

Signed-off-by: tuhaowen <tuhaowen@uniontech.com>
Cc: stable <stable@kernel.org>
Link: https://lore.kernel.org/r/20240708080430.8221-1-tuhaowen@uniontech.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 		2024-08-03 08:54:22 +02:00
..
BUGS-parport
Kconfig parport: PC style parport depends on HAS_IOPORT 2023-05-31 19:17:40 +01:00
Makefile parport: remove ax88796 driver 2023-01-16 09:26:06 +01:00
TODO-parport
daisy.c
ieee1284.c treewide: Use fallthrough pseudo-keyword 2020-08-23 17:36:59 -05:00
ieee1284_ops.c parport: remove non-zero check on count 2021-08-27 16:18:42 +02:00
multiface.h
parport_amiga.c module: remove never implemented MODULE_SUPPORTED_DEVICE 2021-03-17 13:16:18 -07:00
parport_atari.c module: remove never implemented MODULE_SUPPORTED_DEVICE 2021-03-17 13:16:18 -07:00
parport_cs.c
parport_gsc.c parport: gsc: remove DMA leftover code 2023-08-03 14:40:37 +02:00
parport_gsc.h parport: gsc: remove DMA leftover code 2023-08-03 14:40:37 +02:00
parport_ip32.c treewide: remove editor modelines and cruft 2021-05-07 00:26:34 -07:00
parport_mfc3.c module: remove never implemented MODULE_SUPPORTED_DEVICE 2021-03-17 13:16:18 -07:00
parport_pc.c parport: Add support for Brainboxes IX/UC/PX parallel cards 2023-12-13 18:45:32 +01:00
parport_serial.c parport: parport_serial: Add Brainboxes device IDs and geometry 2024-01-20 11:51:48 +01:00
parport_sunbpp.c parport: Explicitly include correct DT includes 2023-08-28 13:36:24 -05:00
probe.c parport: Use string_upper() instead of open coded variant 2021-05-21 14:48:58 +02:00
procfs.c dev/parport: fix the array out-of-bounds risk 2024-08-03 08:54:22 +02:00
share.c parport: Move magic number "15" to a define 2023-05-23 21:43:25 -07:00