ACK: [SRU][OEM-5.14, OEM-5.17][PATCH 0/1] CVE-2022-3061
Tim Gardner
tim.gardner at canonical.com
Thu Mar 9 13:41:50 UTC 2023
On 3/8/23 12:53 PM, Yuxuan Luo wrote:
> [Impact]
> It was found that drivers/video/fbdev does not sanity check parameters passed
> from the userspace program, which could be exploited by malicious programs via
> passing a zero, causing divide by zero error.
>
> [Backport]
> It is a clean cherry pick.
>
> [Test]
> Compile and boot tested.
>
> [Potential Regression]
> Expecting very low risk of regression since the change was but adding a !=0
> check.
>
> Zheyu Ma (1):
> video: fbdev: i740fb: Error out if 'pixclock' equals zero
>
> drivers/video/fbdev/i740fb.c | 3 +++
> 1 file changed, 3 insertions(+)
>
Acked-by: Tim Gardner <tim.gardner at canonical.com>
--
-----------
Tim Gardner
Canonical, Inc
More information about the kernel-team
mailing list