Re: [PATCH 5.10 26/52] e1000e: fix heap overflow in e1000_set_eeprom

On Sun, 2025-09-07 at 21:57 +0200, Greg Kroah-Hartman wrote:

5.10-stable review patch. If anyone has any objections, please let me know.

---

From: Vitaly Lifshits vitaly.lifshits@intel.com

commit 90fb7db49c6dbac961c6b8ebfd741141ffbc8545 upstream.

Fix a possible heap overflow in e1000_set_eeprom function by adding input validation for the requested length of the change in the EEPROM.

[...]

I don't see this causing any problems, but the same check already existed in this function's caller ethtool_set_eeprom() so I don't think there was any vulnerability here.

Ben.