Jiri,

Should this one have been part of the batch you applied? It doesn't
use hid_validate_report().

-Kees

On Thu, Aug 29, 2013 at 3:03 AM, Mika Westerberg
[off-list ref] wrote:

On Wed, Aug 28, 2013 at 10:31:44PM +0200, Jiri Kosina wrote:

quoted

From: Kees Cook <redacted>

A HID device could send a malicious feature report that would cause the
sensor-hub HID driver to read past the end of heap allocation, leaking
kernel memory contents to the caller.

CVE-2013-2898

Signed-off-by: Kees Cook <redacted>
Cc: stable@kernel.org

Reviewed-by: Mika Westerberg <mika.westerberg@linux.intel.com>

-- 
Kees Cook
Chrome OS Security