android_kernel_xiaomi_sm8350

History

Minsuk Kang 8bddef54cb nfc: pn533: Clear nfc_target before being used [ Upstream commit 9f28157778ede0d4f183f7ab3b46995bb400abbe ] Fix a slab-out-of-bounds read that occurs in nla_put() called from nfc_genl_send_target() when target->sensb_res_len, which is duplicated from an nfc_target in pn533, is too large as the nfc_target is not properly initialized and retains garbage values. Clear nfc_targets with memset() before they are used. Found by a modified version of syzkaller. BUG: KASAN: slab-out-of-bounds in nla_put Call Trace: memcpy nla_put nfc_genl_dump_targets genl_lock_dumpit netlink_dump __netlink_dump_start genl_family_rcv_msg_dumpit genl_rcv_msg netlink_rcv_skb genl_rcv netlink_unicast netlink_sendmsg sock_sendmsg ____sys_sendmsg ___sys_sendmsg __sys_sendmsg do_syscall_64 Fixes: `673088fb42` ("NFC: pn533: Send ATR_REQ directly for active device detection") Fixes: `361f3cb7f9` ("NFC: DEP link hook implementation for pn533") Signed-off-by: Minsuk Kang <linuxlovemin@yonsei.ac.kr> Reviewed-by: Krzysztof Kozlowski <krzysztof.kozlowski@linaro.org> Link: https://lore.kernel.org/r/20221214015139.119673-1-linuxlovemin@yonsei.ac.kr Signed-off-by: Jakub Kicinski <kuba@kernel.org> Signed-off-by: Sasha Levin <sashal@kernel.org>		2023-01-18 11:41:32 +01:00
..
fdp
microread
nfcmrvl	nfc: nfcmrvl: Fix potential memory leak in nfcmrvl_i2c_nci_send()	2022-11-10 17:57:50 +01:00
nxp-nci
pn533	nfc: pn533: Clear nfc_target before being used	2023-01-18 11:41:32 +01:00
pn544
s3fwrn5	nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()	2022-11-10 17:57:50 +01:00
st21nfca
st95hf
st-nci	nfc: st-nci: fix memory leaks in EVT_TRANSACTION	2022-12-08 11:22:59 +01:00
Kconfig
Makefile
mei_phy.c
mei_phy.h
nfcsim.c
port100.c
trf7970a.c