9638b67ba25b4a008767fca3b6f52d24400a8d1d - kernel/msm

commit	9638b67ba25b4a008767fca3b6f52d24400a8d1d	[log] [tgz]
author	Dan Carpenter <dan.carpenter@oracle.com>	Sat Oct 29 10:20:20 2011 +0300
committer	Greg Kroah-Hartman <gregkh@suse.de>	Sat Nov 26 17:23:57 2011 -0800
tree	64b97208e939b96f83ef2409a5687d3d95be4697
parent	23226977e9421434a2e7e384219477199ca5f0ec [diff]

Staging: sep: potential buffer overflow in ioctl

tail_size is determined by several variables that come from the user
so we should verify that it's not too large.

Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Acked-by: Alan Cox <alan@linux.intel.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>

drivers/staging/sep/sep_driver.c[diff]

1 file changed

tree: 64b97208e939b96f83ef2409a5687d3d95be4697