drivers: counter: Fix possible out-of-bounds access in MCP7940N driver #84533

Lefucjusz · 2025-01-24T17:54:25Z

This PR fixes the issue of possible out-of-bounds
access if write_data_block function was misused.

Size argument of the function was only validated
against the maximum allowed value, not the real
size of the data struct to be read, what could
cause accessing data past the boundary of the struct.

Should fix #81930.

This PR fixes the issue of possible out-of-bounds access if write_data_block function was misused. Size argument of the function was only validated against the maximum allowed value, not the real size of the data struct to be read, what could cause accessing data past the boundary of the struct. Should fix zephyrproject-rtos#81930. Signed-off-by: Marcin Lyda <[email protected]>

zephyrbot added the area: Counter label Jan 24, 2025

zephyrbot requested a review from nordic-krch January 24, 2025 17:54

zephyrbot assigned nordic-krch Jan 24, 2025

Lefucjusz force-pushed the fix_mcp7940_out_of_bounds_access branch from 437f700 to 7c576ac Compare January 24, 2025 18:48

Lefucjusz changed the title ~~drivers: rtc: Fix possible out-of-bounds access in MCP7940N driver~~ drivers: counter: Fix possible out-of-bounds access in MCP7940N driver Jan 24, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

drivers: counter: Fix possible out-of-bounds access in MCP7940N driver #84533

drivers: counter: Fix possible out-of-bounds access in MCP7940N driver #84533

Lefucjusz commented Jan 24, 2025

drivers: counter: Fix possible out-of-bounds access in MCP7940N driver #84533

Are you sure you want to change the base?

drivers: counter: Fix possible out-of-bounds access in MCP7940N driver #84533

Conversation

Lefucjusz commented Jan 24, 2025