Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 9648224e564aa0d6e3a803bd0e056802cc97297c
commit9648224e564aa0d6e3a803bd0e056802cc97297c[log] [tgz]
authorOhad Ben-Cohen <ohad@wizery.com>Tue Feb 28 16:16:48 2012 +0200
committerOhad Ben-Cohen <ohad@wizery.com>Tue Feb 28 19:10:04 2012 +0200
tree2d097e820dbbc0e8ee65e9e53306e69331c29b9b
parentfa2d7795b2e859574c86cf186e488d12178d51b3 [diff]
rpmsg: validate incoming message length before propagating

When an inbound message arrives, validate its reported length before
propagating it, otherwise buggy (or malicious) remote processors might
trick us into accessing memory which we really shouldn't.

Signed-off-by: Ohad Ben-Cohen <ohad@wizery.com>
Cc: Grant Likely <grant.likely@secretlab.ca>
Cc: Arnd Bergmann <arnd@arndb.de>
Cc: Mark Grosen <mgrosen@ti.com>
Cc: Suman Anna <s-anna@ti.com>
Cc: Fernando Guzman Lugo <fernando.lugo@ti.com>
Cc: Rob Clark <rob@ti.com>
Cc: Ludovic BARRE <ludovic.barre@stericsson.com>
Cc: Loic PALLARDY <loic.pallardy@stericsson.com>
Cc: Omar Ramirez Luna <omar.luna@linaro.org>
1 file changed
tree: 2d097e820dbbc0e8ee65e9e53306e69331c29b9b
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS