qcacld-3.0: Validate vendor scan command
Currently in __wlan_hdd_cfg80211_vendor_scan() there are several
attributes which are not properly validated, and this can lead to a
buffer overread. In order to avoid these issues:
1) Define an appropriate nla_policy and specify this policy when
invoking nla_parse().
2) Explicitly validate the size of the attributes nested in the
QCA_WLAN_VENDOR_ATTR_SCAN_FREQUENCIES attribute.
Change-Id: I1e0d9ecf87839031fbbca9616e4bae0b0c127404
CRs-Fixed: 2054773
1 file changed