superrob1500
/
mirror-linux
mirror of https://github.com/torvalds/linux
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
mirror-linux/drivers/net/wireless/quantenna/qtnfmac
History
Lee Gibson 130f634da1 qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth 
Function qtnf_event_handle_external_auth calls memcpy without
checking the length.
A user could control that length and trigger a buffer overflow.
Fix by checking the length is within the maximum allowed size.

Signed-off-by: Lee Gibson <leegib@gmail.com>
Signed-off-by: Kalle Valo <kvalo@codeaurora.org>
Link: https://lore.kernel.org/r/20210419145842.345787-1-leegib@gmail.com
 		2021-04-22 17:40:12 +03:00
..
pcie qtnfmac_pcie: Use module_pci_driver 2021-01-14 19:31:10 +02:00
Kconfig
Makefile
bus.h
cfg80211.c qtnfmac: remove meaningless labels 2021-04-17 20:27:22 +03:00
cfg80211.h
commands.c qtnfmac: remove meaningless goto statement and labels 2021-04-17 20:33:27 +03:00
commands.h
core.c cfg80211: avoid holding the RTNL when calling the driver 2021-01-26 11:55:50 +01:00
core.h qtnfmac: switch to core handling of rx/tx byte/packet counters 2020-11-12 14:58:27 -08:00
debug.c
debug.h
event.c qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth 2021-04-22 17:40:12 +03:00
event.h
qlink.h
qlink_util.c
qlink_util.h
qtn_hw_ids.h
shm_ipc.c
shm_ipc.h
shm_ipc_defs.h
switchdev.h
trans.c
trans.h
util.c
util.h