kernel_google_seed.git - kernel_google

diff options

author	Ariel Yin <ayin@google.com>	2017-02-10 11:12:40 -0800
committer	Ariel Yin <ayin@google.com>	2017-02-14 22:19:57 +0000
commit	349fa01801c0453cb0354820369a2e9fc6e9cc51 (patch)
tree	5b8ca5574339b40279d99a788bb3b763c112361f /tools/perf/scripts/python/syscall-counts.py
parent	a8b73ef63bf0fa394864770cdcf79805bf652941 (diff)

qcacld-2.0: Fix buffer overflow in WLANSAP_Set_WPARSNIes()

Currently In WLANSAP_Set_WPARSNIes() the parameter WPARSNIEsLen is user-controllable and never validates which uses as the length for a memory copy. This enables user-space applications to corrupt heap memory and potentially crash the kernel. Fix is to validate the WPARSNIes length to its max before use as the length for a memory copy. Change-Id: I7aff731aeae22bfd84beb955439a799abef37f68 CRs-Fixed: 1102648 Bug: 32086742 Signed-off-by: Srinivas Girigowda <sgirigow@codeaurora.org>

Diffstat (limited to 'tools/perf/scripts/python/syscall-counts.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: