| commit | 227139f06b4890d299fbfb499047cb783e6b8221 | [log] [tgz] |
|---|---|---|
| author | Mark Salyzyn <salyzyn@google.com> | Tue Nov 10 15:56:41 2015 -0800 |
| committer | Mark Salyzyn <salyzyn@google.com> | Fri Nov 13 07:58:05 2015 -0800 |
| tree | a2ac30526dc75ac2b0b7591e766f7dae9ca75937 | |
| parent | 0c68a33f9c1fb34fd28c9b803b4a3d1e7bdd1f95 [diff] |
logd: klogd: parse error Resolve three areas missing taglen checking. Add some additional limit-checking paranoia. Problem started when p was allowed to go beyond the size of the incoming buffer in some blind p = cp + 1 fragments, placed the check for that after them all before harm could be done, rather than in each location. Bug: 25620123 Change-Id: Ib5687fd30ef0cd3ba3bc0df310b436ad675ccabc