ALSA: ctxfi: Fix out-of-range access (76c47183) · Commits · Mirrors / git.kernel.org / pub_scm_linux_kernel_git_stable_linux · GitLab

Commit 76c47183 authored Nov 18, 2021 by

Takashi Iwai

ALSA: ctxfi: Fix out-of-range access

The master and next_conj of rcs_ops are used for iterating the
resource list entries, and currently those are supposed to return the
current value.  The problem is that next_conf may go over the last
entry before the loop abort condition is evaluated, and it may return
the "current" value that is beyond the array size.  It was caught
recently as a GPF, for example.

Those return values are, however, never actually evaluated, hence
basically we don't have to consider the current value as the return at
all.  By dropping those return values, the potential out-of-range
access above is also fixed automatically.

This patch changes the return type of master and next_conj callbacks
to void and drop the superfluous code accordingly.

BugLink: https://bugzilla.kernel.org/show_bug.cgi?id=214985
Cc: <stable@vger.kernel.org>
Link: https://lore.kernel.org/r/20211118215729.26257-1-tiwai@suse.de


Signed-off-by: Takashi Iwai <tiwai@suse.de>

parent 547a4a6a

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit de8f8b39
· Dec 02, 2021

mentioned in commit de8f8b39

mentioned in commit de8f8b39c95fea9b0aed9c4f7b2bf2cc5ff55a67

Toggle commit list
mirror @mirror
mentioned in commit 8d0b9ea1
· Dec 02, 2021

mentioned in commit 8d0b9ea1

mentioned in commit 8d0b9ea1917491bf71720b516d97e3afb336952f

Toggle commit list
mirror @mirror
mentioned in commit b9792534
· Dec 09, 2021

mentioned in commit b9792534

mentioned in commit b9792534888b83630f1b3442d8a3d162228e8a0d

Toggle commit list
mirror @mirror
mentioned in commit 1a569231
· Dec 09, 2021

mentioned in commit 1a569231

mentioned in commit 1a56923191ce5625db9b68090ca06c1777e99b92

Toggle commit list

Please register or to comment