Draft: CVE-2023-52683: ACPI: LPIT: Avoid u32 multiplication overflow
requested to merge redhat/red-hat-ci-tools/kernel/bot-branches/centos-stream-9:backport-RHEL-37064-centos-stream-9-main into main
JIRA: https://issues.redhat.com/browse/RHEL-37064
CVE: CVE-2023-52683
ACPI: LPIT: Avoid u32 multiplication overflow
In lpit_update_residency() there is a possibility of overflow
in multiplication, if tsc_khz is large enough (> UINT_MAX/1000).
Change multiplication to mul_u32_u32().
Found by Linux Verification Center (linuxtesting.org) with SVACE.
Fixes: eeb2d80d502a ("ACPI / LPIT: Add Low Power Idle Table (LPIT) support")
Signed-off-by: Nikita Kiryushin <kiryushin@ancud.ru>
Signed-off-by: Rafael J. Wysocki <rafael.j.wysocki@intel.com>
(cherry picked from commit 56d2eeda87995245300836ee4dbd13b002311782)Signed-off-by: cki-backport-bot cki-ci-bot+cki-gitlab-backport-bot@redhat.com