Google Git
Sign in
android / platform / external / adhd / e3deafc9fbf6a900fd5622e7849bc885db3ed757
commite3deafc9fbf6a900fd5622e7849bc885db3ed757[log] [tgz]
authorEn-Shuo Hsu <enshuo@chromium.org>Fri Feb 05 13:33:24 2021 +0800
committerCommit Bot <commit-bot@chromium.org>Mon Mar 08 09:47:08 2021 +0000
tree2703d0fa420d3da26463edcef243de3832f73707
parent4e8cef90572d1f2789aee72c2ed7c24fdabc9d9f [diff]
cras: Fix a potential overflow caught by fuzzer

level = level * 100 / (num_of_level - 1);
If level > INT_MAX /100 then there will be a potential overflow on
signed int.

There's a level >= num_of_level check before the check so we can
guarantee the final value must <= 100. Thus, adding a cast before
the multiply should be sufficient to solve the issue.

BUG=chromium:1174635
TEST=run unit test

Change-Id: I2095f2ce17a1968390757f824d8952e5e9e87d21
Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/third_party/adhd/+/2677583
Reviewed-by: Chih-Yang Hsia <paulhsia@chromium.org>
Tested-by: En-Shuo Hsu <enshuo@chromium.org>
Auto-Submit: En-Shuo Hsu <enshuo@chromium.org>
Commit-Queue: En-Shuo Hsu <enshuo@chromium.org>
1 file changed
tree: 2703d0fa420d3da26463edcef243de3832f73707
  1. .github/
  2. audio_streams/
  3. cras/
  4. cras-config/
  5. cros_alsa/
  6. dbus-config/
  7. defs/
  8. init/
  9. scripts/
  10. seccomp/
  11. sof_sys/
  12. sound_card_init/
  13. ucm-config/
  14. .clang-format
  15. .gitignore
  16. LICENSE.SUPERFASTHASH
  17. LICENSE.UTLIST
  18. LICENSE.WEBKIT
  19. Makefile
  20. OWNERS
  21. OWNERS.fuzz
  22. PRESUBMIT.cfg
  23. ubsan_blocklist.txt
  24. unblocked_terms.txt