iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/drivers/hid
History
Michael Zaidman b7121e3c04 HID: ft260: skip unexpected HID input reports 
The FT260 is not supposed to generate unexpected HID reports. However,
in theory, the unsolicited HID Input reports can be issued by a specially
crafted malicious USB device masquerading as FT260 when the attacker has
physical access to the USB port. In this case, the read_buf pointer points
to the final data portion of the previous I2C Read transfer, and the memcpy
invoked in the ft260_raw_event() will try copying the content of the
unexpected report into the wrong location.

This commit sets the Read buffer pointer to NULL on the I2C Read
transaction completion and checks it in the ft260_raw_event() to detect
and skip the unsolicited Input report.

Reported-by: Enrik Berkhan <Enrik.Berkhan@inka.de>
Signed-off-by: Michael Zaidman <michael.zaidman@gmail.com>
Signed-off-by: Jiri Kosina <jkosina@suse.cz>
2022-11-11 11:09:36 +01:00
..
amd-sfh-hid
HID: amd_sfh: Handle condition of "no sensors" for SFH1.1
2022-09-30 10:31:18 +02:00
i2c-hid
Assorted HID drivers updates and fixes for 6.1
2022-10-07 11:13:42 -07:00
intel-ish-hid
HID: intel-ish-hid: ipc: Add Meteor Lake PCI device ID
2022-08-25 15:03:15 +02:00
surface-hid
HID: surface-hid: Add support for hot-removal
2022-06-13 17:25:08 +02:00
usbhid
HID: move from strlcpy with unused retval to strscpy
2022-08-25 11:44:27 +02:00
.kunitconfig
HID: uclogic: Add KUnit tests for uclogic_rdesc_template_apply()
2022-06-15 15:51:46 +02:00
hid-a4tech.c
HID: a4tech: use A4_2WHEEL_MOUSE_HACK_B8 for A4TECH NB-95
2021-05-05 14:29:13 +02:00
hid-accutouch.c
hid-alps.c
HID: alps: Declare U1_UNICORN_LEGACY support
2022-07-22 15:02:20 +02:00
hid-apple.c
HID: apple: Add "GANSS" to the non-Apple list
2022-07-22 15:05:22 +02:00
hid-appleir.c
HID: appleir: Use devm_kzalloc() instead of kzalloc()
2020-03-13 17:33:11 +01:00
hid-asus.c
HID: asus: ROG NKey: Ignore portion of 0x5a report
2022-08-25 11:31:41 +02:00
hid-aureal.c
hid-axff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-belkin.c
hid-betopff.c
HID: betop: fix slab-out-of-bounds Write in betop_probe
2021-09-15 16:31:21 +02:00
hid-bigbenff.c
HID: bigben: fix slab-out-of-bounds Write in bigben_probe
2022-05-06 10:46:36 +02:00
hid-cherry.c
hid-chicony.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-cmedia.c
HID: cmedia: add support for HS-100B mute button
2021-07-28 11:51:07 +02:00
hid-core.c
Merge branch 'for-6.1/logitech' into for-linus
2022-10-05 10:21:55 +01:00
hid-corsair.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-cougar.c
HID: cougar: Make use of the helper function devm_add_action_or_reset()
2021-10-07 13:37:25 +02:00
hid-cp2112.c
HID: cp2112: prevent a buffer overflow in cp2112_xfer()
2022-06-09 10:55:46 +02:00
hid-creative-sb0540.c
HID: sb0540: add support for Creative SB0540 IR receivers
2019-09-03 16:52:04 +02:00
hid-cypress.c
HID: cypress: Support Varmilo Keyboards' media hotkeys
2020-10-23 13:23:44 +02:00
hid-debug.c
Input: add ABS_PROFILE to uapi and documentation
2022-09-28 18:31:37 -07:00
hid-dr.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-elan.c
HID: elan: Fix potential double free in elan_input_configured
2022-04-21 11:38:28 +02:00
hid-elecom.c
HID: elecom: drop stray comment
2020-11-25 17:40:23 +01:00
hid-elo.c
HID: elo: Revert USB reference counting
2022-02-17 14:14:41 +01:00
hid-emsff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-ezkey.c
hid-ft260.c
HID: ft260: skip unexpected HID input reports
2022-11-11 11:09:36 +01:00
hid-gaff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-gembird.c
hid-generic.c
hid-gfrm.c
HID: do not call hid_set_drvdata(hdev, NULL) in drivers
2019-08-22 17:11:58 +02:00
hid-glorious.c
HID: Add driver fixing Glorious PC Gaming Race mouse report descriptor
2020-03-18 13:36:21 +01:00
hid-google-hammer.c
HID: vivaldi: convert to use dev_groups
2022-08-25 11:37:21 +02:00
hid-gt683r.c
HID: gt683r: add missing MODULE_DEVICE_TABLE
2021-05-27 15:40:34 +02:00
hid-gyration.c
hid-holtek-kbd.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-holtek-mouse.c
HID: holtek: fix mouse probing
2021-12-20 11:25:42 +01:00
hid-holtekff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-hyperv.c
HID: hyperv: Correctly access fields declared as __le16
2022-06-08 12:28:13 +00:00
hid-icade.c
hid-ids.h
HID: saitek: add madcatz variant of MMO7 mouse device ID
2022-10-18 14:42:45 +02:00
hid-input.c
HID: input: fix uclogic tablets
2022-08-25 11:46:55 +02:00
hid-ite.c
HID: lg-g15 + ite: Add MODULE_AUTHOR
2021-05-05 14:39:24 +02:00
hid-jabra.c
hid-kensington.c
hid-keytouch.c
hid-kye.c
HID: uclogic: Switch to Digitizer usage for styluses
2022-05-11 14:19:27 +02:00
hid-lcpower.c
hid-led.c
HID: hid-led: fix maximum brightness for Dream Cheeky
2022-04-21 10:28:49 +02:00
hid-lenovo.c
HID: lenovo: Make array tp10ubkbd_led static const
2022-10-18 14:43:59 +02:00
hid-letsketch.c
HID: Add new Letsketch tablet driver
2022-01-06 14:22:51 +01:00
hid-lg2ff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-lg3ff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-lg4ff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-lg4ff.h
hid-lg-g15.c
HID: lg-g15: Fix comment typo
2022-07-21 13:47:12 +02:00
hid-lg.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-lg.h
hid-lgff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-logitech-dj.c
HID: logitech-dj: add new lightspeed receiver id
2022-02-16 16:26:21 +01:00
hid-logitech-hidpp.c
hid: hid-logitech-hidpp: avoid unnecessary assignments in hidpp_connect_event
2022-09-20 11:24:30 +01:00
hid-macally.c
HID: macally: Constify macally_id_table
2020-08-17 11:38:49 +02:00
hid-magicmouse.c
HID: magicmouse: Do not set BTN_MOUSE on double report
2022-10-14 10:47:50 +01:00
hid-maltron.c
hid-mcp2221.c
HID: mcp2221: prevent a buffer overflow in mcp_smbus_write()
2022-07-21 11:54:40 +02:00
hid-megaworld.c
HID: Add support for Mega World controller force feedback
2022-05-06 08:29:26 +02:00
hid-mf.c
HID: mf: add support for 0079:1846 Mayflash/Dragonrise USB Gamecube Adapter
2020-11-25 14:30:33 +01:00
hid-microsoft.c
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/hid/hid
2020-09-02 12:55:46 -07:00
hid-monterey.c
hid-multitouch.c
HID: multitouch: Add memory barriers
2022-09-20 12:13:40 +01:00
hid-nintendo.c
HID: nintendo: check analog user calibration for plausibility
2022-09-21 13:25:26 +01:00
hid-nti.c
hid-ntrig.c
hid-ortek.c
hid-penmount.c
hid-petalynx.c
hid-picolcd_backlight.c
hid-picolcd_cir.c
media: rc: harmonize infrared durations to microseconds
2020-09-03 16:18:55 +02:00
hid-picolcd_core.c
HID: hid-picolcd_core: Remove unused variable 'ret'
2021-04-07 18:46:20 +02:00
hid-picolcd_debugfs.c
hid-picolcd_fb.c
fbdev: Rename pagelist to pagereflist for deferred I/O
2022-05-03 16:04:22 +02:00
hid-picolcd_lcd.c
hid-picolcd_leds.c
hid-picolcd.h
hid-pl.c
hid-plantronics.c
HID: plantronics: Workaround for double volume key presses
2021-03-08 11:08:58 +01:00
hid-playstation.c
HID: playstation: support updated DualSense rumble mode.
2022-10-14 10:51:08 +01:00
hid-primax.c
hid-prodikeys.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-pxrc.c
HID: Add driver for PhoenixRC Flight Controller
2022-09-20 11:36:21 +01:00
hid-quirks.c
HID: saitek: add madcatz variant of MMO7 mouse device ID
2022-10-18 14:42:45 +02:00
hid-razer.c
HID: Add driver for Razer Blackwidow keyboards
2022-02-16 17:12:14 +01:00
hid-redragon.c
hid-retrode.c
hid-rmi.c
HID: rmi: replace ternary operator with min()
2022-08-25 11:29:58 +02:00
hid-roccat-arvo.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-arvo.h
hid-roccat-common.c
hid-roccat-common.h
hid-roccat-isku.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-isku.h
hid-roccat-kone.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-kone.h
HID: roccat: Use struct_group() to zero kone_mouse_event
2021-09-25 08:20:48 -07:00
hid-roccat-koneplus.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-koneplus.h
hid-roccat-konepure.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-kovaplus.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-kovaplus.h
hid-roccat-lua.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-lua.h
hid-roccat-pyra.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-pyra.h
hid-roccat-ryos.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-savu.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-roccat-savu.h
hid-roccat.c
HID: roccat: Fix use-after-free in roccat_read()
2022-09-20 14:49:15 +02:00
hid-saitek.c
HID: saitek: add madcatz variant of MMO7 mouse device ID
2022-10-18 14:42:45 +02:00
hid-samsung.c
HID: check for valid USB device for many HID drivers
2021-12-02 15:36:18 +01:00
hid-semitek.c
HID: semitek: new driver for GK6X series keyboards
2021-05-05 14:21:08 +02:00
hid-sensor-custom.c
HID: hid-sensor-custom: Process failure of sensor_hub_set_feature()
2021-05-26 12:36:46 +02:00
hid-sensor-hub.c
HID: hid-sensor-hub: Return error for hid_set_field() failure
2021-05-05 14:36:18 +02:00
hid-sigmamicro.c
HID: add SiGma Micro driver
2022-02-02 15:12:22 +01:00
hid-sjoy.c
hid-sony.c
HID: sony: Fix double word in comments
2022-09-20 11:27:29 +01:00
hid-speedlink.c
hid-steam.c
Merge branch 'for-6.1/core' into for-linus
2022-10-05 10:19:06 +01:00
hid-steelseries.c
hid-sunplus.c
hid-thrustmaster.c
HID: thrustmaster: Add sparco wheel and fix array length
2022-08-25 11:38:55 +02:00
hid-tivo.c
hid-tmff.c
HID: thrustmaster use swap() to make code cleaner
2021-12-14 10:50:23 +01:00
hid-topre.c
hid: topre: Add driver fixing report descriptor
2022-09-20 12:16:25 +01:00
hid-topseed.c
hid-twinhan.c
hid-u2fzero.c
HID: add hid_is_usb() function to make it simpler for USB detection
2021-12-02 15:35:57 +01:00
hid-uclogic-core.c
HID: uclogic: Add support for Parblo A610 PRO
2022-08-25 10:26:31 +02:00
hid-uclogic-params-test.c
HID: uclogic: Parse the UGEE v2 frame type
2022-08-25 10:26:31 +02:00
hid-uclogic-params.c
HID: uclogic: Add support for Parblo A610 PRO
2022-08-25 10:26:31 +02:00
hid-uclogic-params.h
HID: uclogic: Parse the UGEE v2 frame type
2022-08-25 10:26:31 +02:00
hid-uclogic-rdesc-test.c
HID: uclogic: KUnit best practices and naming conventions
2022-08-25 10:26:31 +02:00
hid-uclogic-rdesc.c
HID: uclogic: Add support for UGEE v2 mouse frames
2022-08-25 10:26:31 +02:00
hid-uclogic-rdesc.h
HID: uclogic: Add support for UGEE v2 mouse frames
2022-08-25 10:26:31 +02:00
hid-udraw-ps3.c
HID: udraw-ps3: Replace HTTP links with HTTPS ones
2020-07-20 12:24:41 +02:00
hid-viewsonic.c
HID: uclogic: Switch to Digitizer usage for styluses
2022-05-11 14:19:27 +02:00
hid-vivaldi-common.c
HID: vivaldi: convert to use dev_groups
2022-08-25 11:37:21 +02:00
hid-vivaldi-common.h
HID: vivaldi: convert to use dev_groups
2022-08-25 11:37:21 +02:00
hid-vivaldi.c
HID: vivaldi: convert to use dev_groups
2022-08-25 11:37:21 +02:00
hid-vrc2.c
HID: Add driver for VRC-2 Car Controller
2022-09-20 11:35:00 +01:00
hid-waltop.c
hid-wiimote-core.c
HID: wiimote: remove h from printk format specifier
2021-01-07 10:14:58 +01:00
hid-wiimote-debug.c
hid-wiimote-modules.c
HID: Wiimote: Treat the d-pad as an analogue stick
2020-06-19 14:17:22 +02:00
hid-wiimote.h
HID: Wiimote: Treat the d-pad as an analogue stick
2020-06-19 14:17:22 +02:00
hid-xiaomi.c
HID: Add support for side buttons of Xiaomi Mi Dual Mode Wireless Mouse Silent
2021-09-22 11:53:07 +02:00
hid-xinmo.c
hid-zpff.c
HID: Fix assumption that devices have inputs
2019-10-03 15:36:40 -04:00
hid-zydacron.c
hidraw.c
HID: hidraw: fix memory leak in hidraw_release()
2022-08-25 11:30:50 +02:00
Kconfig
Merge branch 'for-6.1/uclogic' into for-linus
2022-10-05 10:34:48 +01:00
Makefile
Merge branch 'for-6.1/uclogic' into for-linus
2022-10-05 10:34:48 +01:00
uhid.c
uaccess: remove CONFIG_SET_FS
2022-02-25 09:36:06 +01:00
wacom_sys.c
Merge branch 'for-6.1/wacom' into for-linus
2022-10-05 10:36:30 +01:00
wacom_wac.c
Merge branch 'for-6.1/wacom' into for-linus
2022-10-05 10:36:30 +01:00
wacom_wac.h
HID: wacom: Simplify comments
2022-08-25 11:32:31 +02:00
wacom.h
HID: wacom: Simplify comments
2022-08-25 11:32:31 +02:00