]> git.baikalelectronics.ru Git - kernel.git/commit
HID: sensor-hub: validate feature report details
authorKees Cook <keescook@chromium.org>
Wed, 28 Aug 2013 20:31:44 +0000 (22:31 +0200)
committerJiri Kosina <jkosina@suse.cz>
Wed, 4 Sep 2013 10:01:58 +0000 (12:01 +0200)
commitf11da0ef16d5fea8b169f9cb2a1629e116c018d6
tree3aaf2d19632500e3c45e59fe393600a86dd3434b
parent4a3aad32abf5a428f22cf372645eb803923e5ffc
HID: sensor-hub: validate feature report details

A HID device could send a malicious feature report that would cause the
sensor-hub HID driver to read past the end of heap allocation, leaking
kernel memory contents to the caller.

CVE-2013-2898

Signed-off-by: Kees Cook <keescook@chromium.org>
Cc: stable@kernel.org
Reviewed-by: Mika Westerberg <mika.westerberg@linux.intel.com>
Signed-off-by: Jiri Kosina <jkosina@suse.cz>
drivers/hid/hid-sensor-hub.c