Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / 8346449288d0b7efa1dff9816589d6183de58954
commit8346449288d0b7efa1dff9816589d6183de58954[log] [tgz]
authorTeow Wan Yee <wy.teow@hi-p.com>Wed Aug 17 15:38:21 2016 +0800
committerJeron Susan <jeron.susan@hi-p.com>Wed Aug 17 16:30:42 2016 +0800
treeeb562c785e3a276c99ded74ff475b97d2b370ea8
parenteb05ec70b1dce87c21a8053dae7a4fd67f71b7f6 [diff]
FPII-2326 : Elevation of privilege vulnerability in Synaptics touchscreen driver CVE-2016-3865 A-28799389

There is a possible stack overflow vulnerability in the rmidev_write function because the stack array size is from user space.
The fix is designed to allocate heap memory for the temporary buffer instead of stack memory to prevent the stack overflow vulnerability

Change-Id: I6d272a2e6e983fe4191e0a8bb5ef153670905e0e
2 files changed
tree: eb562c785e3a276c99ded74ff475b97d2b370ea8
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. AndroidKernel.mk
  25. COPYING
  26. CREDITS
  27. Kbuild
  28. Kconfig
  29. MAINTAINERS
  30. Makefile
  31. README
  32. REPORTING-BUGS