-
- Downloads
qcacld-2.0: Add sanity check to avoid len overflow issue in WMI event data
In WMI/WMA, data from event buffer from FW is used without
sanity checks for upper limit in multiple places. This might
lead to a potential integer overflow further leading to buffer
corruption
Add upper bound checks for max limit of event buffer (1536)
in all affected places to prevent the potential integer
overflow
Bug: 68992434
Change-Id: I30826bb69939bcf02ac850bd2d22ada4795b3c98
CRs-Fixed: 2098519
Bug: 68992421
Signed-off-by: 
Srinivas Girigowda <sgirigow@codeaurora.org>
Showing
- drivers/staging/qcacld-2.0/CORE/SERVICES/WMA/wma.c 211 additions, 0 deletionsdrivers/staging/qcacld-2.0/CORE/SERVICES/WMA/wma.c
- drivers/staging/qcacld-2.0/CORE/SERVICES/WMA/wma.h 1 addition, 1 deletiondrivers/staging/qcacld-2.0/CORE/SERVICES/WMA/wma.h
- drivers/staging/qcacld-2.0/CORE/SERVICES/WMA/wma_ocb.c 14 additions, 0 deletionsdrivers/staging/qcacld-2.0/CORE/SERVICES/WMA/wma_ocb.c
Loading
Please register or sign in to comment