]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b7c5aa7) | patch
qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth
authorLee Gibson <leegib@gmail.com>
Mon, 19 Apr 2021 14:58:42 +0000 (15:58 +0100)
committerKalle Valo <kvalo@codeaurora.org>
Thu, 22 Apr 2021 14:40:12 +0000 (17:40 +0300)
commite0643ddb25da0e76fe27768713627bf538773ae9
treea90e9135a7a4a04b8c969af89349777c93c46f6etree | snapshot
parentb7c5aa791a9c28ab62d48cc1a7c00448c1c280e1commit | diff
qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth

Function qtnf_event_handle_external_auth calls memcpy without
checking the length.
A user could control that length and trigger a buffer overflow.
Fix by checking the length is within the maximum allowed size.

Signed-off-by: Lee Gibson <leegib@gmail.com>
Signed-off-by: Kalle Valo <kvalo@codeaurora.org>
Link: https://lore.kernel.org/r/20210419145842.345787-1-leegib@gmail.com
drivers/net/wireless/quantenna/qtnfmac/event.c diff | blob | history
Linux Kernel Source Tree.