commit | f155c675e56f678b63279d6c04d98c5e32082f55 | [log] [tgz] |
---|---|---|
author | Jeff Johnson <jjohnson@codeaurora.org> | Mon Jun 12 10:42:48 2017 -0700 |
committer | snandini <snandini@codeaurora.org> | Mon Jun 26 11:07:16 2017 -0700 |
tree | 601eaa25cd84b6de9a967f2cc4bd05ae847ada09 | |
parent | 340c0d890365962966c493e01bb5436c5eb40518 [diff] |
qcacmn: Validate vendor abort scan command In wlan_vendor_abort_scan(), nla_parse() is invoked without specifying a policy. This can result in a buffer overread when processing the QCA_WLAN_VENDOR_ATTR_SCAN_COOKIE attribute. To avoid this issue introduce a "scan_policy" (replicated from qcacld-3.0) and use this policy when invoking nla_parse(). Change-Id: Ia3e5cb7535bf0f700399e4a49c9c5da362a3ccf6 CRs-Fixed: 2059857