RE: [PATCH] usb: uvc: Fix 1-byte out-of-bounds read in uvc_parse_format()

From: yjjuny.lee
Date: Tue Jun 10 2025 - 08:34:29 EST

Next message: Nicolas Frattaroli: "[PATCH v6 0/7] RK3576 thermal sensor support, including OTP trim adjustments"
Previous message: Nicolas Frattaroli: "[PATCH v6 1/7] thermal: rockchip: rename rk_tsadcv3_tshut_mode"
In reply to: Ricardo Ribalda: "Re: [PATCH] usb: uvc: Fix 1-byte out-of-bounds read in uvc_parse_format()"
Next in thread: Youngjun Lee: "[PATCH] usb: uvc: Fix 1-byte out-of-bounds read in uvc_parse_format()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Ricardo Ribalda

> I think it makes more sense to add the length check where it is going to be used not on a caller function. If we every change
> uvc_parse_format to read byte #5 we will probably miss the check on
> uvc_parse_streaming()
I agree. Moving the length check into the function itself is a better approach.
I'll send v2 patch.

Next message: Nicolas Frattaroli: "[PATCH v6 0/7] RK3576 thermal sensor support, including OTP trim adjustments"
Previous message: Nicolas Frattaroli: "[PATCH v6 1/7] thermal: rockchip: rename rk_tsadcv3_tshut_mode"
In reply to: Ricardo Ribalda: "Re: [PATCH] usb: uvc: Fix 1-byte out-of-bounds read in uvc_parse_format()"
Next in thread: Youngjun Lee: "[PATCH] usb: uvc: Fix 1-byte out-of-bounds read in uvc_parse_format()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]