Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / vendor / qcom-opensource / wlan / qca-wifi-host-cmn / 45393697a8f8317d30505ecea8abd00cfb71dbf9
commit45393697a8f8317d30505ecea8abd00cfb71dbf9[log] [tgz]
authorKeyur Parekh <kparekh@codeaurora.org>Fri Dec 08 16:15:12 2017 -0800
committersnandini <snandini@codeaurora.org>Wed Dec 27 11:01:16 2017 -0800
tree3f93ba52bf85a176f55d05b3685e2ef5c2b6ab9c
parent8b8f00f622dc39e1663d38707e0d9e93044cffce [diff]
qcacmn: Fix potential buffer overflow

Fragment count will be larger than the upper limit of
cvg_nbuf_cb->extra_flag.num which would lead to an overread
of fragment length. Upper limit check for fragment count
is added in this change

Change-Id: Ib4ba4047f5eea89c09a92f89cf72e1976e0c9f3c
1 file changed
tree: 3f93ba52bf85a176f55d05b3685e2ef5c2b6ab9c
  1. dp/
  2. global_lmac_if/
  3. hal/
  4. hif/
  5. htc/
  6. init_deinit/
  7. os_if/
  8. qdf/
  9. scheduler/
  10. spectral/
  11. target_if/
  12. umac/
  13. utils/
  14. wlan_cfg/
  15. wmi/
  16. README.txt
  17. VERSION.txt