From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from out1-smtp.messagingengine.com ([66.111.4.25]:56295 "EHLO out1-smtp.messagingengine.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1757638AbdEVQDx (ORCPT ); Mon, 22 May 2017 12:03:53 -0400 Date: Mon, 22 May 2017 18:03:43 +0200 From: Greg KH To: Ilya Matveychikov Cc: linux-kernel@vger.kernel.org, stable@vger.kernel.org Subject: Re: [PATCH] cmdline: fix get_options() overflow while parsing ranges Message-ID: <20170522160343.GA29663@kroah.com> References: <2613C75C-B04D-4BFF-82A6-12F97BA0F620@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <2613C75C-B04D-4BFF-82A6-12F97BA0F620@gmail.com> Sender: stable-owner@vger.kernel.org List-ID: On Mon, May 22, 2017 at 07:53:47PM +0400, Ilya Matveychikov wrote: > When using get_options() it's possible to specify a range of numbers, > like 1-100500. The problem is that it doesn't track array size while > calling internally to get_range() which iterates over the range and > fills the memory with numbers. > > Signed-off-by: Ilya V. Matveychikov > --- > lib/cmdline.c | 6 +++--- > 1 file changed, 3 insertions(+), 3 deletions(-) This is not the correct way to submit patches for inclusion in the stable kernel tree. Please read: https://www.kernel.org/doc/html/latest/process/stable-kernel-rules.html for how to do this properly.