commit | 597baaff65b68d58ee035d556ddd6e2387c63c6d | [log] [tgz] |
---|---|---|
author | Jes Sorensen <Jes.Sorensen@redhat.com> | Tue Apr 15 19:43:20 2014 +0200 |
committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | Tue Apr 15 11:03:53 2014 -0700 |
tree | 08abf304fbcf3d9c9d31a65fd8a1dca70eb1f2dc | |
parent | 2023d18e6b38c5490df0cd6f17a8e0f2ec6dae0f [diff] |
staging: rtl8723au: Fix buffer overflow in rtw_get_wfd_ie() Add bounds checking to not allow WFD Information Elements larger than 128, and make sure we use the correct buffer size MAX_WFD_IE_LEN instea of hardcoding the size. This also simplifies rtw_get_wfd_ie() by using the cfg80211 infrastructure. Reported-by: Dan Carpenter <dan.carpenter@oracle.com> Signed-off-by: Jes Sorensen <Jes.Sorensen@redhat.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>