Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / vendor / qcom-opensource / wlan / qca-wifi-host-cmn / 337c5c6adabb472adfa9ccdc01519781e76602fd
commit337c5c6adabb472adfa9ccdc01519781e76602fd[log] [tgz]
authorAlok Kumar <alokkuma@codeaurora.org>Fri Feb 09 18:19:49 2018 +0530
committersnandini <snandini@codeaurora.org>Thu Feb 15 07:42:04 2018 -0800
tree6c27ba58ea542e606cb7d7448eddc9ffb8973cc3
parent1b50fdc45110343c0df389d576a8861b726666d3 [diff]
qcacmn: Fix buffer overflow in fill_ieee80211_hdr_data

Currently variable pl_msdu_info->num_msdu is from message, and
is used directly as array size. This may cause buffer overflow.

To address this issue add qdf_assert check.

Change-Id: Ice78633314b321243136ce4987c633e1201d3cb8
CRs-Fixed: 2187441
1 file changed
tree: 6c27ba58ea542e606cb7d7448eddc9ffb8973cc3
  1. dp/
  2. ftm/
  3. global_lmac_if/
  4. hal/
  5. hif/
  6. htc/
  7. init_deinit/
  8. os_if/
  9. qdf/
  10. scheduler/
  11. spectral/
  12. target_if/
  13. umac/
  14. utils/
  15. wlan_cfg/
  16. wmi/
  17. README.txt
  18. VERSION.txt