brcmfmac: add length check in brcmf_cfg80211_escan_handler() - blaster4385/linux-IllusionX - Linux kernel with personal config changes for arch linux

diff options

author	Arend Van Spriel <[email protected]>	2017-09-12 10:47:53 +0200
committer	Kalle Valo <[email protected]>	2017-09-20 07:46:29 +0300
commit	17df6453d4be17910456e99c5a85025aa1b7a246 (patch)
tree	ef84bc921d2e6fda33f14a1c5e3af899674bbc33 /tools/perf/scripts/python/export-to-sqlite.py
parent	4c707c04f622a7a8570a8db6389e5a2310b92195 (diff)

brcmfmac: add length check in brcmf_cfg80211_escan_handler()

Upon handling the firmware notification for scans the length was checked properly and may result in corrupting kernel heap memory due to buffer overruns. This fix addresses CVE-2017-0786. Cc: [email protected] # v4.0.x Cc: Kevin Cernekee <[email protected]> Reviewed-by: Hante Meuleman <[email protected]> Reviewed-by: Pieter-Paul Giesberts <[email protected]> Reviewed-by: Franky Lin <[email protected]> Signed-off-by: Arend van Spriel <[email protected]> Signed-off-by: Kalle Valo <[email protected]>

Diffstat (limited to 'tools/perf/scripts/python/export-to-sqlite.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: