Minki/linux
1
0
Fork 1
mirror of https://github.com/torvalds/linux.git synced 2024-11-27 06:31:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
ac74ea0186
linux/drivers/rpmsg
History
Arun Kumar Neelakantam ac74ea0186 rpmsg: glink: Fix use after free in open_ack TIMEOUT case 
Extra channel reference put when remote sending OPEN_ACK after timeout
causes use-after-free while handling next remote CLOSE command.

Remove extra reference put in timeout case to avoid use-after-free.

Fixes: b4f8e52b89 ("rpmsg: Introduce Qualcomm RPM glink driver")
Cc: stable@vger.kernel.org
Tested-by: Srinivas Kandagatla <srinivas.kandagatla@linaro.org>
Signed-off-by: Arun Kumar Neelakantam <aneela@codeaurora.org>
Signed-off-by: Bjorn Andersson <bjorn.andersson@linaro.org>
2019-10-16 09:38:20 -07:00
..
Kconfig rpmsg: Switch to SPDX license identifier 2018-06-03 17:37:11 -07:00
Makefile License cleanup: add SPDX GPL-2.0 license identifier to files with no license 2017-11-02 11:10:55 +01:00
qcom_glink_native.c rpmsg: glink: Fix use after free in open_ack TIMEOUT case 2019-10-16 09:38:20 -07:00
qcom_glink_native.h rpmsg: glink: Switch to SPDX license identifier 2018-06-03 17:37:15 -07:00
qcom_glink_rpm.c rpmsg: glink: Switch to SPDX license identifier 2018-06-03 17:37:15 -07:00
qcom_glink_smem.c rpmsg: glink: Set tail pointer to 0 at end of FIFO 2019-10-11 11:34:12 -07:00
qcom_smd.c rpmsg: smd: fix memory leak on channel create 2018-09-27 20:11:11 -07:00
rpmsg_char.c rpmsg: char: release allocated memory 2019-10-04 21:13:47 -07:00
rpmsg_core.c rpmsg: core: fix comments 2019-08-26 23:08:25 -07:00
rpmsg_internal.h rpmsg: core: fix comments 2019-08-26 23:08:25 -07:00
virtio_rpmsg_bus.c rpmsg: virtio_rpmsg_bus: replace "%p" with "%pK" 2019-08-27 15:21:05 -07:00