Skip to content
Snippets Groups Projects
Commit 616eca60 authored by Dmitry Torokhov's avatar Dmitry Torokhov Committed by Mark Segal
Browse files

Input: gtco - fix potential out-of-bound access 


commit a50829479f58416a013a4ccca791336af3c584c7 upstream.

parse_hid_report_descriptor() has a while (i < length) loop, which
only guarantees that there's at least 1 byte in the buffer, but the
loop body can read multiple bytes which causes out-of-bounds access.

Bug: 80547328
Change-Id: Ic6a2fda77685b90d7642c09b20f5d57d6d48b726
Reported-by: default avatarAndrey Konovalov <andreyknvl@google.com>
Reviewed-by: default avatarAndrey Konovalov <andreyknvl@google.com>
Signed-off-by: default avatarDmitry Torokhov <dmitry.torokhov@gmail.com>
Signed-off-by: default avatarGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: default avatarSiqi Lin <siqilin@google.com>
(cherry picked from commit 41079441)
parent e6e45613
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment