]> git.ipfire.org Git - thirdparty/linux.git/commit
projects / thirdparty / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ca8e7a1) | patch
drm/amdkfd: fix a vulnerability of integer overflow in kfd debugger
authorEric Huang <jinhuieric.huang@amd.com>
Tue, 12 May 2026 14:19:52 +0000 (10:19 -0400)
committerAlex Deucher <alexander.deucher@amd.com>
Wed, 27 May 2026 16:01:13 +0000 (12:01 -0400)
commit93f5534b35a05ef8a0109c1eefa800062fee810a
tree2b32b7970905f1cab31910d0c28596a148b0de65tree | snapshot
parentca8e7a119a2e4045324cffb8f9f58bedcc3dc928commit | diff
drm/amdkfd: fix a vulnerability of integer overflow in kfd debugger

get_queue_ids() computes array_size = num_queues * sizeof(uint32_t),
which could overflow on 32-bit size_t build. using array_size()
instead, it saturates to SIZE_MAX on overflow.

Signed-off-by: Eric Huang <jinhuieric.huang@amd.com>
Acked-by: Alex Deucher <alexander.deucher@amd.com>
Signed-off-by: Alex Deucher <alexander.deucher@amd.com>
(cherry picked from commit 2d57a0475f085c08b49312dfd8edcb461845f285)
Cc: stable@vger.kernel.org
drivers/gpu/drm/amd/amdkfd/kfd_device_queue_manager.c diff | blob | blame | history
A mirror of Linus' kernel repository