iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,055,285 Commits 104 Branches 1,843 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Mazin Al Haddad 309aea4b6b tty: n_gsm: add sanity check for gsm->receive in gsm_receive_buf() 
commit f16c6d2e58a4c2b972efcf9eb12390ee0ba3befb upstream.

A null pointer dereference can happen when attempting to access the
"gsm->receive()" function in gsmld_receive_buf(). Currently, the code
assumes that gsm->recieve is only called after MUX activation.
Since the gsmld_receive_buf() function can be accessed without the need to
initialize the MUX, the gsm->receive() function will not be set and a
NULL pointer dereference will occur.

Fix this by avoiding the call to "gsm->receive()" in case the function is
not initialized by adding a sanity check.

Call Trace:
 <TASK>
 gsmld_receive_buf+0x1c2/0x2f0 drivers/tty/n_gsm.c:2861
 tiocsti drivers/tty/tty_io.c:2293 [inline]
 tty_ioctl+0xa75/0x15d0 drivers/tty/tty_io.c:2692
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:870 [inline]
 __se_sys_ioctl fs/ioctl.c:856 [inline]
 __x64_sys_ioctl+0x193/0x200 fs/ioctl.c:856
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

Link: https://syzkaller.appspot.com/bug?id=bdf035c61447f8c6e0e6920315d577cb5cc35ac5
Fixes: 01aecd917114 ("tty: n_gsm: fix tty registration before control channel open")
Cc: stable <stable@kernel.org>
Reported-and-tested-by: syzbot+e3563f0c94e188366dbb@syzkaller.appspotmail.com
Signed-off-by: Mazin Al Haddad <mazinalhaddad05@gmail.com>
Link: https://lore.kernel.org/r/20220814015211.84180-1-mazinalhaddad05@gmail.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2022-09-08 12:28:08 +02:00
arch
s390: fix nospec table alignments
2022-09-08 12:28:07 +02:00
block
blk-mq: fix io hung due to missing commit_rqs
2022-08-31 17:16:50 +02:00
certs
certs/blacklist_hashes.c: fix const confusion in certs blacklist
2022-06-22 14:22:01 +02:00
crypto
KEYS: asymmetric: enforce SM2 signature use pkey algo
2022-08-17 14:24:28 +02:00
Documentation
arm64: errata: Add Cortex-A510 to the repeat tlbi list
2022-09-05 10:30:04 +02:00
drivers
tty: n_gsm: add sanity check for gsm->receive in gsm_receive_buf()
2022-09-08 12:28:08 +02:00
fs
cifs: fix small mempool leak in SMB2_negotiate()
2022-09-08 12:28:04 +02:00
include
USB: core: Prevent nested device-reset calls
2022-09-08 12:28:07 +02:00
init
stack: Declare {randomize_,}kstack_offset to fix Sparse warnings
2022-08-17 14:23:10 +02:00
ipc
ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
2022-06-09 10:23:10 +02:00
kernel
bpf, cgroup: Fix kernel BUG in purge_effective_progs
2022-09-08 12:28:01 +02:00
lib
crypto: lib - remove unneeded selection of XOR_BLOCKS
2022-09-05 10:30:03 +02:00
LICENSES
LICENSES/dual/CC-BY-4.0: Git rid of "smart quotes"
2021-07-15 06:31:24 -06:00
mm
mm: pagewalk: Fix race between unmap and page walker
2022-09-08 12:28:05 +02:00
net
net: mac802154: Fix a condition in the receive path
2022-09-08 12:28:07 +02:00
samples
samples/landlock: Format with clang-format
2022-06-09 10:23:23 +02:00
scripts
kbuild: Fix include path in scripts/Makefile.modpost
2022-09-05 10:30:06 +02:00
security
apparmor: Fix memleak in aa_simple_write_to_buffer()
2022-08-25 11:40:01 +02:00
sound
ALSA: seq: Fix data-race at module auto-loading
2022-09-08 12:28:08 +02:00
tools
testing: selftests: nft_flowtable.sh: use random netns names
2022-09-05 10:30:12 +02:00
usr
usr/include/Makefile: add linux/nfc.h to the compile-test coverage
2022-02-01 17:27:15 +01:00
virt
KVM: Unconditionally get a ref to /dev/kvm module when creating a VM
2022-08-25 11:39:53 +02:00
.clang-format
clang-format: Update with the latest for_each macro list
2021-05-12 23:32:39 +02:00
.cocciconfig
.get_maintainer.ignore
Opt out of scripts/get_maintainer.pl
2019-05-16 10:53:40 -07:00
.gitattributes
.gitattributes: use 'dts' diff driver for dts files
2019-12-04 19:44:11 -08:00
.gitignore
.gitignore: ignore only top-level modules.builtin
2021-05-02 00:43:35 +09:00
.mailmap
mailmap: add Andrej Shadura
2021-10-18 20:22:03 -10:00
COPYING
COPYING: state that all contributions really are covered by this file
2020-02-10 13:32:20 -08:00
CREDITS
MAINTAINERS: Move Daniel Drake to credits
2021-09-21 08:34:58 +03:00
Kbuild
kbuild: rename hostprogs-y/always to hostprogs/always-y
2020-02-04 01:53:07 +09:00
Kconfig
kbuild: ensure full rebuild when the compiler is updated
2020-05-12 13:28:33 +09:00
MAINTAINERS
Input: goodix - add a goodix.h header file
2022-07-12 16:34:51 +02:00
Makefile
Linux 5.15.65
2022-09-05 10:30:13 +02:00
README
Drop all 00-INDEX files from Documentation/
2018-09-09 15:08:58 -06:00

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
Description
No description provided
Readme 5.7 GiB
Languages
C 97.6%
Assembly 1%
Shell 0.5%
Python 0.3%
Makefile 0.3%