[PATCH] mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show()
Pratyush Yadav
pratyush at kernel.org
Tue Apr 21 02:24:05 PDT 2026
On Tue, Apr 21 2026, Miquel Raynal wrote:
> Hi Tudor,
>
> On 17/04/2026 at 15:24:39 GMT, Tudor Ambarus <tudor.ambarus at linaro.org> wrote:
>
>> Sashiko noticed an out-of-bounds read [1].
>
> [...]
>
>> Cc: stable at vger.kernel.org
>> Fixes: 0257be79fc4a ("mtd: spi-nor: expose internal parameters via debugfs")
>> Closes: https://sashiko.dev/#/patchset/20260417-die-erase-fix-v2-1-73bb7004ebad%40infineon.com [1]
>> Signed-off-by: Tudor Ambarus <tudor.ambarus at linaro.org>
>> ---
>> We shall assign a CVE to this. I'll look into how next week.
>
> They are assigned automatically to every fix, no?
>
> If spi-nor folks want to ack, I might take it through an mtd/fixes PR.
Reviewed-by: Pratyush Yadav <pratyush at kernel.org>
Please do. Thanks!
--
Regards,
Pratyush Yadav
More information about the linux-mtd
mailing list