drivers/media/pci/meye/meye.c · f157a48bb6fe0c4f25ec5ed308f6ddb7ec7dbead · Kirill Smelkov / linux

media: fix: media: pci: meye: validate offset to avoid arbitrary access · f157a48b

Lao Wei authored Jul 09, 2018

BugLink: https://bugs.launchpad.net/bugs/1853881

[ Upstream commit eac7230f ]

Motion eye video4linux driver for Sony Vaio PictureBook desn't validate user-controlled parameter
'vma->vm_pgoff', a malicious process might access all of kernel memory from user space by trying
pass different arbitrary address.
Discussion: http://www.openwall.com/lists/oss-security/2018/07/06/1

Signed-off-by: Lao Wei <zrlw@qq.com>
Signed-off-by: Mauro Carvalho Chehab <mchehab+samsung@kernel.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
Signed-off-by: Connor Kuehl <connor.kuehl@canonical.com>
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>

f157a48b

meye.c 48.9 KB

Replace meye.c