72a91dbeaa692abaca9ead30206714c2c4447b1a - platform/vendor/qcom-opensource/wlan/qcacld-3.0

commit	72a91dbeaa692abaca9ead30206714c2c4447b1a	[log] [tgz]
author	Yeshwanth Sriram Guntuka <ysriramg@codeaurora.org>	Thu Jun 07 14:58:29 2018 +0530
committer	nshrivas <nshrivas@codeaurora.org>	Tue Jun 19 17:28:09 2018 -0700
tree	d09b8d610667b9d5365e62734905201497ce3bea
parent	c3cb92fc741a385aab45510100250fc2c76d8925 [diff]

qcacld-3.0: Fix possible OOB access in lim_process_auth_frame

Key id is extracted from data buffer without validating
len of data which could result in out of bound access.

Fix is to validate frame len before extracting key id
from data buffer.

Change-Id: I1f4d88b7ca6201f03a6bc8e6915f1479f571838f
CRs-Fixed: 2254141

core/mac/src/pe/lim/lim_process_auth_frame.c[diff]

1 file changed

tree: d09b8d610667b9d5365e62734905201497ce3bea

components/
configs/
core/
uapi/
Android.mk
Kbuild
Kconfig
Makefile
README.txt