android/android_kernel_xiaomi_sm8450
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
86e995f964
android_kernel_xiaomi_sm8450/drivers/usb
History
Dongliang Mu b8bbae3236 usb: idmouse: fix an uninit-value in idmouse_open 
[ Upstream commit bce2b0539933e485d22d6f6f076c0fcd6f185c4c ]

In idmouse_create_image, if any ftip_command fails, it will
go to the reset label. However, this leads to the data in
bulk_in_buffer[HEADER..IMGSIZE] uninitialized. And the check
for valid image incurs an uninitialized dereference.

Fix this by moving the check before reset label since this
check only be valid if the data after bulk_in_buffer[HEADER]
has concrete data.

Note that this is found by KMSAN, so only kernel compilation
is tested.

Reported-by: syzbot+79832d33eb89fb3cd092@syzkaller.appspotmail.com
Signed-off-by: Dongliang Mu <mudongliangabcd@gmail.com>
Link: https://lore.kernel.org/r/20220922134847.1101921-1-dzm91@hust.edu.cn
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2022-10-26 13:25:54 +02:00
..
atm usb: atm: don't use snprintf() for sysfs attrs 2020-08-25 19:11:18 +02:00
c67x00 Linux 5.9-rc3 2020-08-31 07:11:45 +02:00
cdns3 usb: cdns3: fix issue with rearming ISO OUT endpoint 2022-09-28 11:10:23 +02:00
chipidea usb: chipidea: udc: check request status before setting device address 2022-06-29 08:59:51 +02:00
class USB: cdc-acm: Add Icom PMR F3400 support (0c26:0020) 2022-09-08 11:11:39 +02:00
common usb: common: debug: Check non-standard control requests 2022-10-26 13:25:31 +02:00
core usb: common: add function to get interval expressed in us unit 2022-10-26 13:25:31 +02:00
dwc2 usb: dwc2: fix wrong order of phy_power_on and phy_init 2022-09-08 11:11:39 +02:00
dwc3 usb: dwc3: gadget: Avoid duplicate requests to enable Run/Stop 2022-09-28 11:10:21 +02:00
early Revert "usb: early: convert to readl_poll_timeout_atomic()" 2021-12-22 09:30:56 +01:00
gadget usb: gadget: function: fix dangling pnp_string in f_printer.c 2022-10-26 13:25:36 +02:00
host usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() 2022-10-26 13:25:53 +02:00
image USB: microtek: use set_host_byte() 2020-09-16 12:42:10 +02:00
isp1760 usb: isp1760-hcd: convert to readl_poll_timeout_atomic() 2020-09-25 16:30:05 +02:00
misc usb: idmouse: fix an uninit-value in idmouse_open 2022-10-26 13:25:54 +02:00
mon usb: mon: make mmapped memory read only 2022-10-15 07:55:54 +02:00
mtu3 usb: mtu3: fix USB 3.0 dual-role-switch from device to host 2022-05-09 09:04:56 +02:00
musb usb: musb: Fix musb_gadget.c rxstate overflow bug 2022-10-26 13:25:53 +02:00
phy usb: phy: generic: Get the vbus supply 2022-05-09 09:04:59 +02:00
renesas_usbhs usb: renesas: Fix refcount leak bug 2022-08-25 11:38:13 +02:00
roles usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() 2021-05-14 09:49:55 +02:00
serial USB: serial: qcserial: add new usb-id for Dell branded EM7455 2022-10-15 07:55:55 +02:00
storage Revert "usb: storage: Add quirk for Samsung Fit flash" 2022-10-26 13:25:54 +02:00
typec usb: typec: ucsi: Remove incorrect warning 2022-10-05 10:38:38 +02:00
usbip usb: usbip: add missing device lock on tweak configuration cmd 2022-06-14 18:32:31 +02:00
Kconfig treewide: replace '---help---' in Kconfig files with 'help' 2020-06-14 01:57:21 +09:00
Makefile USB: Changes for v5.4 merge window 2019-09-02 19:20:57 +02:00
usb-skeleton.c USB: usb-skeleton: drop redundant in-urb check 2019-10-10 12:41:19 +02:00