APPLIED Re: [SRU][OEM-5.14, OEM-5.17][PATCH 0/1] CVE-2022-3061
Timo Aaltonen
tjaalton at ubuntu.com
Mon Mar 13 12:44:46 UTC 2023
Yuxuan Luo kirjoitti 8.3.2023 klo 21.53:
> [Impact]
> It was found that drivers/video/fbdev does not sanity check parameters passed
> from the userspace program, which could be exploited by malicious programs via
> passing a zero, causing divide by zero error.
>
> [Backport]
> It is a clean cherry pick.
>
> [Test]
> Compile and boot tested.
>
> [Potential Regression]
> Expecting very low risk of regression since the change was but adding a !=0
> check.
>
> Zheyu Ma (1):
> video: fbdev: i740fb: Error out if 'pixclock' equals zero
>
> drivers/video/fbdev/i740fb.c | 3 +++
> 1 file changed, 3 insertions(+)
>
applied to both, thanks
--
t
More information about the kernel-team
mailing list