FEX-Emu/linux
1
0
Fork 0
mirror of https://github.com/FEX-Emu/linux.git synced 2025-01-26 04:35:01 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux/drivers
History
Xi Wang 44afb3a043 drm/i915: fix integer overflow in i915_gem_do_execbuffer() 
On 32-bit systems, a large args->num_cliprects from userspace via ioctl
may overflow the allocation size, leading to out-of-bounds access.

This vulnerability was introduced in commit 432e58ed ("drm/i915: Avoid
allocation for execbuffer object list").

Signed-off-by: Xi Wang <xi.wang@gmail.com>
Reviewed-by: Chris Wilson <chris@chris-wilson.co.uk>
Cc: stable@vger.kernel.org
Signed-off-by: Daniel Vetter <daniel.vetter@ffwll.ch>
2012-04-23 22:32:15 +02:00
..
accessibility
acpi
Revert "ACPI: ignore FADT reset-reg-sup flag"
2012-04-20 11:19:35 -07:00
amba
ARM: 7366/3: amba: Remove AMBA level regulator support
2012-04-13 14:04:08 +01:00
ata
libata: forbid port runtime pm by default, fixing regression
2012-04-18 14:33:25 -04:00
atm
auxdisplay
base
drivers/base: fix compiler warning in SoC export driver - idr should be ida
2012-04-09 14:54:22 -07:00
bcma
bcma: fix build error on MIPS; implicit pcibios_enable_device
2012-04-10 14:13:30 -04:00
block
Fixes in various components:
2012-04-20 11:31:00 -07:00
bluetooth
Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth
2012-04-09 15:47:49 -04:00
cdrom
char
tty and serial fixes for 3.4-rc2
2012-04-12 15:36:33 -07:00
clk
clocksource
Revert "clocksource: Load the ACPI PM clocksource asynchronously"
2012-04-12 00:05:05 +02:00
connector
cpufreq
cpufreq: OMAP: fix build errors: depends on ARCH_OMAP2PLUS
2012-04-13 17:57:40 -07:00
cpuidle
Merge branches 'idle-fix' and 'misc' into release
2012-04-06 21:48:59 -04:00
crypto
crypto: talitos - properly lock access to global talitos registers
2012-04-09 15:13:40 +08:00
dca
devfreq
dio
dma
dmaengine: Kconfig: fix Atmel at_hdmac entry
2012-04-17 16:29:41 +02:00
edac
Merge branch 'stable' of git://git.kernel.org/pub/scm/linux/kernel/git/cmetcalf/linux-tile
2012-04-06 17:56:20 -07:00
eisa
firewire
firmware
gpio
gpio/exynos: Fix compiler warning in gpio-samsung.c file
2012-04-10 22:15:39 -06:00
gpu
drm/i915: fix integer overflow in i915_gem_do_execbuffer()
2012-04-23 22:32:15 +02:00
hid
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jikos/hid
2012-04-20 10:39:33 -07:00
hsi
hv
hwmon
hwmon: (ads1015) Fix build warning
2012-04-18 11:15:50 -07:00
hwspinlock
i2c
i2c: prevent spurious interrupt on Designware controllers
2012-04-10 08:09:03 -07:00
ide
idle
simple_open: automatically convert to simple_open()
2012-04-05 15:25:50 -07:00
ieee802154
infiniband
Add a fix for a bug hit by Alexey Shvetsov in ib_srtp that hits on
2012-04-12 18:51:32 -07:00
input
mfd: Convert twl6040 to i2c driver, and separate it from twl core
2012-04-16 16:45:34 +02:00
iommu
Merge branch 'akpm' (Andrew's patch-bomb)
2012-04-05 15:30:34 -07:00
isdn
tty and serial fixes for 3.4-rc2
2012-04-12 15:36:33 -07:00
leds
leds-atmel-pwm.c: Make pwmled_probe() __devinit
2012-04-17 16:29:31 +02:00
lguest
macintosh
mca
md
md/bitmap: prevent bitmap_daemon_work running while initialising bitmap
2012-04-12 16:05:06 +10:00
media
Merge branch 'v4l_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/mchehab/linux-media
2012-04-21 12:43:23 -07:00
memstick
message
mfd
mfd: Fix modular builds of rc5t583 regulator support
2012-04-16 21:27:07 +02:00
misc
Merge branch 'akpm' (Andrew's patch-bomb)
2012-04-05 15:30:34 -07:00
mmc
mmc: core: Do not pre-claim host in suspend
2012-04-20 21:52:13 -04:00
mtd
fix breakage in mtdchar_open(), sanitize failure exits
2012-04-09 01:38:55 -04:00
net
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2012-04-12 14:04:33 -07:00
nfc
nubus
of
gpio: Fix range check in of_gpio_simple_xlate()
2012-04-10 14:20:56 -06:00
oprofile
simple_open: automatically convert to simple_open()
2012-04-05 15:25:50 -07:00
parisc
parport
pci
PCI: Retry BARs restoration for Type 0 headers only
2012-04-16 18:33:35 -07:00
pcmcia
Merge git://git.kernel.org/pub/scm/linux/kernel/git/brodo/pcmcia
2012-03-29 16:00:48 -07:00
pinctrl
pinctrl: implement pinctrl_check_ops
2012-04-11 09:31:02 +02:00
platform
Merge branch 'release' of git://git.kernel.org/pub/scm/linux/kernel/git/lenb/linux
2012-03-30 16:45:39 -07:00
pnp
Merge branch 'release' of git://git.kernel.org/pub/scm/linux/kernel/git/lenb/linux
2012-03-30 16:45:39 -07:00
power
Various small bugfixes and enhancements, plus two new drivers:
2012-03-30 16:09:02 -07:00
pps
ps3
ptp
rapidio
regulator
regulator: Fix a build warning in the anatop driver for 3.4
2012-04-10 10:26:41 -07:00
remoteproc
simple_open: automatically convert to simple_open()
2012-04-05 15:25:50 -07:00
rpmsg
rtc
drivers/rtc/rtc-pl031.c: enable clock on all ST variants
2012-04-12 13:12:12 -07:00
s390
[S390] s390/char/vmur.c: fix memory leak
2012-04-11 14:28:24 +02:00
sbus
scsi
SCSI: Fix error handling when no ULD is attached
2012-04-15 11:08:53 -07:00
sfi
sh
SuperH updates for 3.4 merge window
2012-03-30 00:09:17 -07:00
sn
spi
Merge branch 'fixes' of git://git.linaro.org/people/rmk/linux-arm
2012-04-15 17:35:19 -07:00
ssb
staging
Staging tree fixes for 3.4-rc2
2012-04-12 15:35:12 -07:00
target
tcm_fc: Do not free tpg structure during wq allocation failure
2012-04-06 18:57:05 -07:00
tc
thermal
tty
drivers/tty/amiserial.c: add missing tty_unlock
2012-04-19 19:15:35 -07:00
uio
usb
ARM: SoC fixes for 3.4-rc
2012-04-21 12:45:52 -07:00
uwb
uwb: fix error handling
2012-04-18 13:15:51 -07:00
vhost
tools/virtio: fix up vhost/test module build
2012-04-12 10:35:42 +03:00
video
ARM: a few more SoC fixes for 3.4-rc
2012-04-15 11:14:54 -07:00
virt
virtio
virtio_balloon: fix handling of PAGE_SIZE != 4k
2012-04-15 11:51:06 +03:00
vlynq
w1
watchdog
ARM: cleanups of io includes
2012-03-29 18:02:10 -07:00
xen
xen/resume: Fix compile warnings.
2012-04-19 15:12:49 -04:00
zorro
Kconfig
Merge branch 'for-next' of git://gitorious.org/kernel-hsi/kernel-hsi
2012-04-02 09:50:40 -07:00
Makefile
Merge branch 'for-next' of git://gitorious.org/kernel-hsi/kernel-hsi
2012-04-02 09:50:40 -07:00