Overview
About vulnerability
In the Linux kernel, the following vulnerability has been resolved:
media: pci: ivtv: Add check for DMA map result
In case DMA fails, ‘dma->SG_length’ is 0. This value is later used to access ‘dma->SGarray[dma->SG_length - 1]’, which will cause out of bounds access.
Add check to return early on invalid value. Adjust warnings accordingly.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
Details
- Affected product:
- Oracle Linux 7 ELS
- Affected packages:
- kernel-uek @ 5.4.17
In the Linux kernel, the following vulnerability has been resolved:
media: pci: ivtv: Add check for DMA map result
In case DMA fails, ‘dma->SG_length’ is 0. This value is later used to access ‘dma->SGarray[dma->SG_length - 1]’, which will cause out of bounds access.
Add check to return early on invalid value. Adjust warnings accordingly.
Found by Linux Verification Center (linuxtesting.org) with SVACE.