| commit | 87cfad94f06656056a0f0d227aee716daf9e3b2a | [log] [tgz] |
|---|---|---|
| author | Mark Salyzyn <salyzyn@google.com> | Tue Nov 10 15:56:41 2015 -0800 |
| committer | Mark Salyzyn <salyzyn@google.com> | Fri Nov 13 07:58:05 2015 -0800 |
| tree | a2ac30526dc75ac2b0b7591e766f7dae9ca75937 | |
| parent | e122f122114b11b8a70b73153ee811a5a50b8df4 [diff] |
logd: klogd: parse error Resolve three areas missing taglen checking. Add some additional limit-checking paranoia. Problem started when p was allowed to go beyond the size of the incoming buffer in some blind p = cp + 1 fragments, placed the check for that after them all before harm could be done, rather than in each location. Bug: 25620123 Change-Id: Ib5687fd30ef0cd3ba3bc0df310b436ad675ccabc