android_kernel_xiaomi_sm8350

History

Rakesh Pillai 9f72aa9c82 qcacld-3.0: Fix use-after-free when skb is copied When we receive a packet from the network stack for transmission, we make a copy of this skb and free the shared skb before trying to trasnmit it. Currently the mac address used for tdls operations is taken as a pointer to the original skb, which gets freed after the skb_unshare. Copy the mac address into a local stack memory instead of using a pointer to the skb data to avoid the use-after-free condition. Change-Id: I9f0e6260476d5a41b7209a6a599f50a548b953b5 CRs-Fixed: 2733445	2020-07-20 07:52:22 -07:00
..
inc	qcacld-3.0: Rename file name and function name for sysfs 'range_ext'	2020-07-17 23:59:34 -07:00
src	qcacld-3.0: Fix use-after-free when skb is copied	2020-07-20 07:52:22 -07:00

Rakesh Pillai 9f72aa9c82 qcacld-3.0: Fix use-after-free when skb is copied

When we receive a packet from the network stack for
transmission, we make a copy of this skb and free the
shared skb before trying to trasnmit it.

Currently the mac address used for tdls operations is
taken as a pointer to the original skb, which gets freed
after the skb_unshare.

Copy the mac address into a local stack memory instead
of using a pointer to the skb data to avoid the
use-after-free condition.

Change-Id: I9f0e6260476d5a41b7209a6a599f50a548b953b5
CRs-Fixed: 2733445

2020-07-20 07:52:22 -07:00

inc

qcacld-3.0: Rename file name and function name for sysfs 'range_ext'

2020-07-17 23:59:34 -07:00

src

qcacld-3.0: Fix use-after-free when skb is copied

2020-07-20 07:52:22 -07:00