On 1/27/23 16:04, Kees Cook wrote:
The aac_priv() helper assumes that the private cmd area immediately follows struct scsi_cmnd. Allocate this space as part of scsicmd, else there is a risk of heap overflow. Seen with GCC 13: [ ... ]
Bart Van Assche bvanassche@acm.org