[PATCH] mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show()
Miquel Raynal
miquel.raynal at bootlin.com
Tue Apr 21 00:35:20 PDT 2026
Hi Tudor,
On 17/04/2026 at 15:24:39 GMT, Tudor Ambarus <tudor.ambarus at linaro.org> wrote:
> Sashiko noticed an out-of-bounds read [1].
[...]
> Cc: stable at vger.kernel.org
> Fixes: 0257be79fc4a ("mtd: spi-nor: expose internal parameters via debugfs")
> Closes: https://sashiko.dev/#/patchset/20260417-die-erase-fix-v2-1-73bb7004ebad%40infineon.com [1]
> Signed-off-by: Tudor Ambarus <tudor.ambarus at linaro.org>
> ---
> We shall assign a CVE to this. I'll look into how next week.
They are assigned automatically to every fix, no?
If spi-nor folks want to ack, I might take it through an mtd/fixes PR.
Thanks,
Miquèl
More information about the linux-mtd
mailing list