From 1df05b02f0c4d7f24323c758f27e89b36506bec5 Mon Sep 17 00:00:00 2001 From: orbisai0security Date: Tue, 26 May 2026 05:34:28 +0000 Subject: [PATCH] fix: V-002 security vulnerability Automated security fix generated by OrbisAI Security --- dpdk/drivers/ml/cnxk/cn10k_ml_model.c | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/dpdk/drivers/ml/cnxk/cn10k_ml_model.c b/dpdk/drivers/ml/cnxk/cn10k_ml_model.c index 0325cd54f..950902995 100644 --- a/dpdk/drivers/ml/cnxk/cn10k_ml_model.c +++ b/dpdk/drivers/ml/cnxk/cn10k_ml_model.c @@ -126,6 +126,16 @@ cn10k_ml_model_metadata_check(uint8_t *buffer, uint64_t size) return -EINVAL; } + /* Validate total section sizes fit within the provided buffer */ + if ((uint64_t)sizeof(struct cn10k_ml_model_metadata) + + metadata->init_model.file_size + + metadata->main_model.file_size + + metadata->finish_model.file_size + + metadata->weights_bias.file_size > size) { + plt_err("Invalid metadata, model section sizes exceed buffer size"); + return -EINVAL; + } + if (metadata->weights_bias.relocatable != 1) { plt_err("Model not supported, non-relocatable weights and bias"); return -ENOTSUP;