Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / vendor / qcom-opensource / wlan / prima / refs/tags/FP2-open-16.05.0
commit90ed623ead851bfdfe79e535747790bbab5c1c0a[log] [tgz]
authorc.wang <c.wang2@hi-p.com>Tue Apr 19 16:10:46 2016 +0800
committerc.wang <c.wang2@hi-p.com>Tue Apr 19 16:23:37 2016 +0800
tree7f182a7aaaa0ce4734f78ea1f7b6a7fd8d662ea7
parent50c0b29e6db4e72f5d92438cffa599751aa82d1d [diff]
FPII-1851:Elevation of Privilege Vulnerability in Qualcomm Wi-Fi driver (Device Specific) CVE-2015-0571 ANDROID-26763920

Kernel assumes all SET IOCTL commands are assigned with even
numbers. But in our WLAN driver, some SET IOCTLS are assigned with
odd numbers. This leads kernel fail to check, for some SET IOCTLs,
whether user has the right permission to do SET operation.
Hence, in driver, before processing SET_VAR_INTS_GETNONE, making
sure user task has right permission to process the command.

Change-Id: Icbdfe69c18c1ab3b75d63e046d5251307a794817
CRs-Fixed: 930942
1 file changed
tree: 7f182a7aaaa0ce4734f78ea1f7b6a7fd8d662ea7
  1. CORE/
  2. firmware_bin/
  3. riva/
  4. Android.mk
  5. Kbuild
  6. Kconfig
  7. Makefile