android_kernel_zuk_msm8996.git

diff options

author	Arend Van Spriel <arend.vanspriel@broadcom.com>	2017-09-12 10:47:53 +0200
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2017-10-18 09:20:40 +0200
commit	6721969c7b8a35f85a41acaabdad190ed32cf704 (patch)
tree	24dcc74303cd5b555a4c7549368a03e8fc5c92d3 /scripts/stackusage
parent	69f53f5d37d53ba17ca744947226b4cdadb90c13 (diff)

brcmfmac: add length check in brcmf_cfg80211_escan_handler()

commit 17df6453d4be17910456e99c5a85025aa1b7a246 upstream. Upon handling the firmware notification for scans the length was checked properly and may result in corrupting kernel heap memory due to buffer overruns. This fix addresses CVE-2017-0786. Cc: Kevin Cernekee <cernekee@chromium.org> Reviewed-by: Hante Meuleman <hante.meuleman@broadcom.com> Reviewed-by: Pieter-Paul Giesberts <pieter-paul.giesberts@broadcom.com> Reviewed-by: Franky Lin <franky.lin@broadcom.com> Signed-off-by: Arend van Spriel <arend.vanspriel@broadcom.com> Signed-off-by: Kalle Valo <kvalo@codeaurora.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'scripts/stackusage')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: