Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / vendor / qcom-opensource / wlan / qca-wifi-host-cmn / c05f8e47be8a80a426c1059d6b7366c57771fe4d
commitc05f8e47be8a80a426c1059d6b7366c57771fe4d[log] [tgz]
authorBala Venkatesh <bjavvaji@codeaurora.org>Fri Nov 16 18:06:07 2018 +0530
committernshrivas <nshrivas@codeaurora.org>Tue Nov 27 02:01:39 2018 -0800
treecdefa7b62ac091432302eb5e62a5d5dabf27ec95
parent5f7cfd49c2a936cb93cea786080c9cf78fe7a9e4 [diff]
qcacmn: Avoid possible integer overflow

In function init_deinit_chainmask_table_alloc, alloc size is declared
as uint32 and is assigned the value the multiplying non zero value
sizeof(struct wlan_psoc_host_chainmask_capabilities) and uint32
value ser_ext_par->chainmask_table[i].num_valid_chainmasks.
This can lead to overflow as multiplies value can be more than uint32.

Change-Id: I9a886d9ee5213ae8989a2c5d4502336cc275418a
CRs-Fixed: 2347650
1 file changed
tree: cdefa7b62ac091432302eb5e62a5d5dabf27ec95
  1. cfg/
  2. dp/
  3. ftm/
  4. global_lmac_if/
  5. hal/
  6. hif/
  7. htc/
  8. init_deinit/
  9. os_if/
  10. qal/
  11. qdf/
  12. scheduler/
  13. spectral/
  14. target_if/
  15. umac/
  16. utils/
  17. wbuff/
  18. wlan_cfg/
  19. wmi/
  20. README.txt
  21. VERSION.txt