[PATCH v2] usb: dwc2: host: Fix use after free w/ simultaneous irqs
Doug Anderson
dianders at chromium.org
Thu Oct 15 16:38:20 PDT 2015
John,
On Thu, Oct 15, 2015 at 4:21 PM, John Youn <John.Youn at synopsys.com> wrote:
> Passing a NULL qtd to some of the subcases will lead to a NULL
> pointer dereference in that function or some function that it
> calls.
>
> I think you could just check the qtd after each call and bail if
> it's not ok.
I worry a little bit about ignoring an interrupt that we've already
acknowledged, but if you think that's safer I can certainly change the
patch.
-Doug
More information about the Linux-rockchip
mailing list