commit | 4e3f275a80a3c07932c39ac064494f9c0d81f3c4 | [log] [tgz] |
---|---|---|
author | Bala Venkatesh <bjavvaji@codeaurora.org> | Tue Jun 18 19:35:16 2019 +0530 |
committer | nshrivas <nshrivas@codeaurora.org> | Thu Jun 20 18:36:10 2019 -0700 |
tree | 5fd1842199348e808190979426072f6bb9679641 | |
parent | db24dda3717937db5f35c329831e42a95f49022e [diff] |
qcacld-3.0: Avoid OOB in function tdls_ct_idle_handler In function tdls_ct_idle_handler, idx is assigned from tdls_info->index which can be 0 254. But tdls_conn_info is static array in tdls_soc_priv_obj of size WLAN_TDLS_STA_MAX_NUM (8). So check idx is less than WLAN_TDLS_STA_MAX_NUM or not to avoid OOB memory access. Change-Id: I8387cb0a44a79f0f83b25c12de2aa9fbc39ab2f3 CRs-Fixed: 2474432