Google Git
Sign in
android / kernel / common / refs/tags/ASB-2020-06-05_3.18
tagd70952afa85f2278c64d9812a007f31a9cba319d
taggerTodd Kjos <tkjos@google.com>Fri Jun 05 16:24:01 2020 -0700
object42844fdbef553cb4996566a9760455df7d1aed66 
https://source.android.com/security/bulletin/2020-06-01
CVE-2020-8647
CVE-2020-8648
CVE-2020-8428
commit42844fdbef553cb4996566a9760455df7d1aed66[log] [tgz]
authorTakashi Iwai <tiwai@suse.de>Mon Sep 03 15:16:43 2018 +0200
committerLee Jones <lee.jones@linaro.org>Wed Jun 03 08:42:11 2020 +0100
treeea57d3b45f346e47fe610906d15dca41aba41d7e
parent8a17a114005eaf36fb76cad07c1e4ea6989b7cc3 [diff]
ALSA: rawmidi: Initialize allocated buffers

commit 5a7b44a8df822e0667fc76ed7130252523993bda upstream.

syzbot reported the uninitialized value exposure in certain situations
using virmidi loop.  It's likely a very small race at writing and
reading, and the influence is almost negligible.  But it's safer to
paper over this just by replacing the existing kvmalloc() with
kvzalloc().

Reported-by: syzbot+194dffdb8b22fc5d207a@syzkaller.appspotmail.com
Signed-off-by: Takashi Iwai <tiwai@suse.de>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Lee Jones <lee.jones@linaro.org>
Change-Id: Ife8f63ec1c583a7723b5b62425ed12fce2159595
1 file changed
tree: ea57d3b45f346e47fe610906d15dca41aba41d7e
  1. android/
  2. arch/
  3. block/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .gitignore
  24. .mailmap
  25. build.config.cuttlefish.x86_64
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS
  34. verity_dev_keys.der.x509