| From: |
| Greg KH <greg-AT-kroah.com> |
| To: |
| Ilya Matveychikov <matvejchikov-AT-gmail.com> |
| Subject: |
| Re: [PATCH] cmdline: fix get_options() overflow while parsing ranges |
| Date: |
| Mon, 22 May 2017 18:03:43 +0200 |
| Message-ID: |
| <20170522160343.GA29663@kroah.com> |
| Cc: |
| linux-kernel-AT-vger.kernel.org, stable-AT-vger.kernel.org |
On Mon, May 22, 2017 at 07:53:47PM +0400, Ilya Matveychikov wrote:
> When using get_options() it's possible to specify a range of numbers,
> like 1-100500. The problem is that it doesn't track array size while
> calling internally to get_range() which iterates over the range and
> fills the memory with numbers.
>
> Signed-off-by: Ilya V. Matveychikov <matvejchikov@gmail.com>
> ---
> lib/cmdline.c | 6 +++---
> 1 file changed, 3 insertions(+), 3 deletions(-)
<formletter>
This is not the correct way to submit patches for inclusion in the
stable kernel tree. Please read:
https://www.kernel.org/doc/html/latest/process/stable-ker...
for how to do this properly.
</formletter>
