Google Git
Sign in
android / kernel / common / 4f5f5411f0c14
commit4f5f5411f0c14ac0b61d5e6a77d996dd3d5b5fd3[log] [tgz]
authorOliver Neukum <oneukum@suse.com>Thu Feb 17 14:10:44 2022 +0100
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Wed Mar 02 11:42:47 2022 +0100
tree5e8a7ac457f68e0e5139639c522750c5faae3f15
parent55eec5c630eac8034bbfb772bb2e2bccc0777a2b [diff]
sr9700: sanity check for packet length

commit e9da0b56fe27206b49f39805f7dcda8a89379062 upstream.

A malicious device can leak heap data to user space
providing bogus frame lengths. Introduce a sanity check.

Signed-off-by: Oliver Neukum <oneukum@suse.com>
Reviewed-by: Grant Grundler <grundler@chromium.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: 5e8a7ac457f68e0e5139639c522750c5faae3f15
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. LICENSES/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .clang-format
  24. .cocciconfig
  25. .get_maintainer.ignore
  26. .gitattributes
  27. .gitignore
  28. .mailmap
  29. COPYING
  30. CREDITS
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. README