Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / aedec9226809ae9d1972f8f8079fc70206ee7a88
commitaedec9226809ae9d1972f8f8079fc70206ee7a88[log] [tgz]
authorJohn W. Linville <linville@tuxdriver.com>Mon May 04 11:18:57 2009 -0400
committerJohn W. Linville <linville@tuxdriver.com>Mon May 11 15:07:01 2009 -0400
tree21e003e44b23d5b780e3da8431098e955851948a
parente1cc1c578055d20d36e084e324001fb5e0355a71 [diff]
airo: airo_get_encode{,ext} potential buffer overflow

Feeding the return code of get_wep_key directly to the length parameter
of memcpy is a bad idea since it could be -1...

Reported-by: Eugene Teo <eugeneteo@kernel.sg>
Signed-off-by: John W. Linville <linville@tuxdriver.com>
1 file changed
tree: 21e003e44b23d5b780e3da8431098e955851948a
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. usr/
  20. virt/
  21. .gitignore
  22. .mailmap
  23. COPYING
  24. CREDITS
  25. Kbuild
  26. MAINTAINERS
  27. Makefile
  28. README
  29. REPORTING-BUGS