[PATCH] Input: apple_z2 - bound the device-reported packet length
Sasha Finkelstein
k at chaosmail.tech
Sat Jun 13 14:57:25 PDT 2026
> On Jun 13, 2026, at 23:42, Bryam Vargas via B4 Relay <devnull+hexlabsecurity.proton.me at kernel.org> wrote:
>
> From: Bryam Vargas <hexlabsecurity at proton.me>
>
> [...]
> Reject any packet whose length exceeds the receive buffer.
>
Reviewed-by: Sasha Finkelstein <k at chaosmail.tech>
Although, if you reject the packet, the datastream will be desynced and
the device should be reset before it can operate again.
More information about the linux-arm-kernel
mailing list