Received: by 2002:a05:7412:37c9:b0:e2:908c:2ebd with SMTP id jz9csp1606068rdb; Wed, 20 Sep 2023 14:10:52 -0700 (PDT) X-Google-Smtp-Source: AGHT+IE2yTf/urHFZxQQeQxCSg6E/gXPUwzAYvPUaEGP3si11vhUxsSGDh90PQL9Qz6thJqovEq6 X-Received: by 2002:a17:902:7202:b0:1c4:588f:5971 with SMTP id ba2-20020a170902720200b001c4588f5971mr2540196plb.29.1695244252003; Wed, 20 Sep 2023 14:10:52 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1695244251; cv=none; d=google.com; s=arc-20160816; b=PcqwH+C27UaO17F6uR0CArnkMhA3y9V16MsVudiOuvSrnk5ISjooq/EM3zKMOPJtRT 74u6YlySzxKMTGcC0521A8GrtMf+4jYB5i4ShcQNpuw9XjurkPBl5YPRDd1ppcgTQzCd n1mml+LC1G1Ez979rLsezkZ9uO7bd1axgtoPBQMFM3v7TGgeJaof2+wn1Adcw7/Xhvrm h+Xcp4ZMC4QGo6ICPPAkZ0g3aM1oAiX+6kqU9z2f1pItgpWEMPl8HXjm0rVTVTPdfIbk CDNJ4pRlinH8Qi5MdD1L+0gqcUuIS4hfgv82rYEAau6uzEjiesQ3GHDml+TwBNesCxNk RzHQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:in-reply-to:references:date:message-id :from:subject:content-transfer-encoding:mime-version:dkim-signature; bh=GuTT5QQpW2YDaqUfTU/sb658nEJ4a1xJ6gGbkUOqEYw=; fh=v4Z3N2Htbr8NtGqMLkQjkIE/EbeUcf6lhEWEAm07n3g=; b=HLN7M931nHr5oVqcWa8eJFcLAlyFOf4KDZUXed8HhGrolRj4QUuKIkDG020nRFX5uC kQiuRr4RWVWxqJRAISl4vOk4tt8HvKPWJH4hfZwLSVSYDlnavXPQuShKakvy+P19Zp0D EXsdp7EmR+kXShEW7CNRK0tP2Q9/P866RH/Eg2X3yr8FetfE6u/QSgke6arTp9B94+9U 0ylmX3a9l3UEcNCI48r42VYOomwmRJhdY6Iy95nNsRfPLOKITxRZa5Ug0PdqdPpOXlL7 flVxr4O+6+c+wbdpvcU4hP08TmC1ul5Abp17dzRrb0ypINUY5M3F/yahCMQde0hIf5xI i0vg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=SFPspL53; spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 2620:137:e000::3:6 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from pete.vger.email (pete.vger.email. [2620:137:e000::3:6]) by mx.google.com with ESMTPS id o6-20020a170902d4c600b001c3ce0922ecsi13107711plg.627.2023.09.20.14.10.29 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 20 Sep 2023 14:10:51 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 2620:137:e000::3:6 as permitted sender) client-ip=2620:137:e000::3:6; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=SFPspL53; spf=pass (google.com: domain of linux-bluetooth-owner@vger.kernel.org designates 2620:137:e000::3:6 as permitted sender) smtp.mailfrom=linux-bluetooth-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by pete.vger.email (Postfix) with ESMTP id DAA2F831504B; Wed, 20 Sep 2023 14:10:25 -0700 (PDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.10 at pete.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230029AbjITVK3 (ORCPT + 99 others); Wed, 20 Sep 2023 17:10:29 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:59166 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230179AbjITVK3 (ORCPT ); Wed, 20 Sep 2023 17:10:29 -0400 Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 7EF32B9 for ; Wed, 20 Sep 2023 14:10:23 -0700 (PDT) Received: by smtp.kernel.org (Postfix) with ESMTPS id 20C64C433C9; Wed, 20 Sep 2023 21:10:23 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1695244223; bh=wq8NbjSnqnabrwGS0bRqj24U15kzwhMpfVZd4361p5k=; h=Subject:From:Date:References:In-Reply-To:To:Cc:From; b=SFPspL53Bxpp3CxpAGA4JFLdTD4e1hZWAV0Ij9Sw0i0L78+j3jLZwnZ5SG+FHdA6T NC0aLNF/4O0uLDB2xizg/6E6PsQ2xbr20sB7iLwp09IJmli52Jx6eSp8229Sr7YRY5 nq5MDo+NB2oIoCmlTWaEKCXFE61c2XAHabkAP5DkhKoF4FjCX9YXRJTGC829IvJgCb J3+jOE/bJbrev8lZBLT1MZeSeUxNoPObUZuPpnBuHyj6VuyLhYGb60YVYaolQg25f5 uleEiNgEVJ9QDqJFB15pEnF6QypzWW8MHQDRbieoUXXQ8ezSKkmAQLnLMZSrE6S6Ps 6jec+D+mAt/8w== Received: from aws-us-west-2-korg-oddjob-1.ci.codeaurora.org (localhost.localdomain [127.0.0.1]) by aws-us-west-2-korg-oddjob-1.ci.codeaurora.org (Postfix) with ESMTP id 089D5C595C4; Wed, 20 Sep 2023 21:10:23 +0000 (UTC) Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Subject: Re: [PATCH BlueZ] pbap: Fix not checking Primary/Secundary Counter length From: patchwork-bot+bluetooth@kernel.org Message-Id: <169524422303.13420.5457407864169782596.git-patchwork-notify@kernel.org> Date: Wed, 20 Sep 2023 21:10:23 +0000 References: <20230919191401.311236-1-luiz.dentz@gmail.com> In-Reply-To: <20230919191401.311236-1-luiz.dentz@gmail.com> To: Luiz Augusto von Dentz Cc: linux-bluetooth@vger.kernel.org X-Spam-Status: No, score=-1.2 required=5.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,MAILING_LIST_MULTI, SPF_HELO_NONE,SPF_PASS autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on pete.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-bluetooth@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (pete.vger.email [0.0.0.0]); Wed, 20 Sep 2023 14:10:26 -0700 (PDT) Hello: This patch was applied to bluetooth/bluez.git (master) by Luiz Augusto von Dentz : On Tue, 19 Sep 2023 12:14:01 -0700 you wrote: > From: Luiz Augusto von Dentz > > Primary/Secundary Counters are supposed to be 16 bytes values, if the > server has implemented them incorrectly it may lead to the following > crash: > > ================================================================= > ==31860==ERROR: AddressSanitizer: heap-buffer-overflow on address > 0x607000001878 at pc 0x7f95a1575638 bp 0x7fff58c6bb80 sp 0x7fff58c6b328 > > [...] Here is the summary with links: - [BlueZ] pbap: Fix not checking Primary/Secundary Counter length https://git.kernel.org/pub/scm/bluetooth/bluez.git/?id=5ab5352531a9 You are awesome, thank you! -- Deet-doot-dot, I am a bot. https://korg.docs.kernel.org/patchwork/pwbot.html