Minki/linux
1
0
Fork 1
mirror of https://github.com/torvalds/linux.git synced 2024-12-14 15:13:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
3a9b153c55
linux/drivers/net/wireless/marvell
History
Qing Xu 3a9b153c55 mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() 
mwifiex_ret_wmm_get_status() calls memcpy() without checking the
destination size.Since the source is given from remote AP which
contains illegal wmm elements , this may trigger a heap buffer
overflow.
Fix it by putting the length check before calling memcpy().

Signed-off-by: Qing Xu <m1s5p6688@gmail.com>
Signed-off-by: Kalle Valo <kvalo@codeaurora.org>
2020-01-27 16:34:33 +02:00
..
libertas wireless-drivers fixes for v5.5 2020-01-23 14:30:20 +01:00
libertas_tf libertas_tf: Use correct channel range in lbtf_geo_init 2019-07-24 14:53:40 +03:00
mwifiex mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() 2020-01-27 16:34:33 +02:00
Kconfig treewide: Add SPDX license identifier - Makefile/Kconfig 2019-05-21 10:50:46 +02:00
Makefile treewide: Add SPDX license identifier - Makefile/Kconfig 2019-05-21 10:50:46 +02:00
mwl8k.c mac80211: simplify TX aggregation start 2019-10-04 13:58:13 +02:00