commit | b71dbbcfaa2a2965e0797db7333396a71062a341 | [log] [tgz] |
---|---|---|
author | Kevin McKinney <klmckinney1@gmail.com> | Tue Dec 20 10:41:13 2011 -0500 |
committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | Wed Feb 08 17:19:03 2012 -0800 |
tree | 8e74932054e9f9f9ab87642def51deb45e2dab9a | |
parent | 3c92e38dc4d803a7f90a08277a9d59f920963e0c [diff] |
Staging: bcm: Fix an integer overflow in IOCTL_BCM_NVM_READ/WRITE Variables stNVMReadWrite.uioffset and stNVMReadWrite.uiNumBytes are chosen from userspace and can be very high. The sum of these two digits would result in a small number. Therefore, this patch verifies a negative number was not entered, and reorganizes the equation to remove the integer overflow. Signed-off-by: Kevin McKinney <klmckinney1@gmail.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>