Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / vendor / qcom-opensource / wlan / qcacld-3.0 / ab088faa4ac3c2aa1add4c364fa02d058482a5a5
commitab088faa4ac3c2aa1add4c364fa02d058482a5a5[log] [tgz]
authorSourav Mohapatra <mohapatr@codeaurora.org>Mon Jan 08 16:25:05 2018 +0530
committersnandini <snandini@codeaurora.org>Wed Jan 24 23:46:52 2018 -0800
tree3b33a086805370c7a63400491f84498a93094ac5
parent17d37b34b36a7375f4f74d90ba1dfccf1034b4bb [diff]
qcacld-3.0: Fix potential buffer overflow

In the function sap_clear_session_param, sapctx->sessionId can have
value more than max value allowed for the array
mac_ctx->sap.sapCtxList.

Add sanity check for the variable sapctx->sessionId

Change-Id: I846a8a1435de63d0a2e34f23bc407e0a8fa53eb2
CRs-Fixed: 2162255
1 file changed
tree: 3b33a086805370c7a63400491f84498a93094ac5
  1. components/
  2. core/
  3. uapi/
  4. Android.mk
  5. Kbuild
  6. Kconfig
  7. Makefile
  8. README.txt