commit | 9d7985f4b416c833b3c6d090401f5f679b04bc7c | [log] [tgz] |
---|---|---|
author | Teow Wan Yee <wy.teow@hi-p.com> | Thu Aug 18 16:11:37 2016 +0800 |
committer | WY Teow <wy.teow@hi-p.com> | Thu Aug 18 16:13:40 2016 +0800 |
tree | 7d5663c1fb734457308f4c648733c03b632d7ad0 | |
parent | eb05ec70b1dce87c21a8053dae7a4fd67f71b7f6 [diff] |
FPII-2327 : Elevation of privilege vulnerability in Qualcomm camera driver CVE-2016-3859 A-28815326 There is no validation of the reg_cfg_cmd->u.dmi_info.hi_tbl_offset variable passed into the msm_isp_send_hw_cmd function leading to potential kernel memory corruption. The fix is designed to add additional bounds checks to prevent the kernel memory corruption. Change-Id: Iada9ce718238c8f3f2926e2d354a5845a3fe1935