]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 73d7bfa) | patch
ALSA: wavefront: Fix integer overflow in sample size validation
authorJunrui Luo <moonafterrain@outlook.com>
Tue, 16 Dec 2025 11:06:27 +0000 (06:06 -0500)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Mon, 19 Jan 2026 12:10:06 +0000 (13:10 +0100)
commitd2f5d8cf1eadb7b33e476f59aa9c6653e4f2b937
tree465324b955c58642853e3afd0863443bd21a92bftree | snapshot
parent73d7bfacc5ca8d259dff7a1c1dc8e04b910ac41ccommit | diff
ALSA: wavefront: Fix integer overflow in sample size validation

[ Upstream commit 0c4a13ba88594fd4a27292853e736c6b4349823d ]

The wavefront_send_sample() function has an integer overflow issue
when validating sample size. The header->size field is u32 but gets
cast to int for comparison with dev->freemem

Fix by using unsigned comparison to avoid integer overflow.

Fixes: 1da177e4c3f4 ("Linux-2.6.12-rc2")
Cc: stable@vger.kernel.org
Signed-off-by: Junrui Luo <moonafterrain@outlook.com>
Link: https://patch.msgid.link/SYBPR01MB7881B47789D1B060CE8BF4C3AFC2A@SYBPR01MB7881.ausprd01.prod.outlook.com
Signed-off-by: Takashi Iwai <tiwai@suse.de>
Signed-off-by: Sasha Levin <sashal@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
sound/isa/wavefront/wavefront_synth.c diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git