Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / b8748fb412b84646da59274a23cfc6899ab1ba48
commitb8748fb412b84646da59274a23cfc6899ab1ba48[log] [tgz]
authorSayali Lokhande <sayalil@codeaurora.org>Thu Oct 05 11:36:17 2017 +0530
committerSubhash Jadavani <subhashj@codeaurora.org>Mon Oct 16 16:44:25 2017 -0700
tree72e41a62080a829f48dcabdb1c07eb7a403ac5b4
parentcc8c86a2384e832ce31895e28fbbdc861d0c35f6 [diff]
scsi: ufs: Fix stack overflow read in ufs debugfs driver

When getting string from userspace by simple_write_to_buffer
in ufs_qcom_dbg_testbus_cfg_write() function, the string
copied to configuration is not terminated with '\0'. Thus
stack overflow read may occur while copying configuration to
host->testbus.select_major, which will result in information
leak later while printing error message. This change adds null
character at the end of the input string to avoid information
leak.

Change-Id: Ic9a9204def4bd6976f42f5f80ae5c0a9730afeb1
Signed-off-by: Sayali Lokhande <sayalil@codeaurora.org>
1 file changed
tree: 72e41a62080a829f48dcabdb1c07eb7a403ac5b4
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. techpack/
  21. tools/
  22. usr/
  23. virt/
  24. .cocciconfig
  25. .get_maintainer.ignore
  26. .gitattributes
  27. .gitignore
  28. .mailmap
  29. AndroidKernel.mk
  30. build.config.goldfish.arm
  31. build.config.goldfish.arm64
  32. build.config.goldfish.mips
  33. build.config.goldfish.mips64
  34. build.config.goldfish.x86
  35. build.config.goldfish.x86_64
  36. COPYING
  37. CREDITS
  38. Kbuild
  39. Kconfig
  40. MAINTAINERS
  41. Makefile
  42. README
  43. REPORTING-BUGS