android_kernel_xiaomi_sm8350

History

Rajeev Kumar Sirasanagandla 4192d988f0 qcacld-3.0: Avoid potential buffer over-flow in cfg80211 scan In __wlan_hdd_cfg80211_scan(), while copying ie data from cfg80211_scan_request to local destination buffer, there is no check of ie_len against maximum possible length of SIR_MAC_MAX_ADD_IE_LENGTH (2048). This can result in buffer over-flow. To address this, validate ie_len in cfg80211_scan_request. Change-Id: I5da837395869704666762fdf57293d9561d3ad83 CRs-Fixed: 2247604	2018-06-15 12:39:24 -07:00
..
inc	qcacld-3.0: Avoid VDEV start for new interface when roaming in progress	2018-06-14 20:55:38 -07:00
src	qcacld-3.0: Avoid potential buffer over-flow in cfg80211 scan	2018-06-15 12:39:24 -07:00

Rajeev Kumar Sirasanagandla 4192d988f0 qcacld-3.0: Avoid potential buffer over-flow in cfg80211 scan

In __wlan_hdd_cfg80211_scan(), while copying ie data from
cfg80211_scan_request to local destination buffer, there is no check of
ie_len against maximum possible length of SIR_MAC_MAX_ADD_IE_LENGTH (2048).
This can result in buffer over-flow.

To address this, validate ie_len in cfg80211_scan_request.

Change-Id: I5da837395869704666762fdf57293d9561d3ad83
CRs-Fixed: 2247604

2018-06-15 12:39:24 -07:00

inc

qcacld-3.0: Avoid VDEV start for new interface when roaming in progress

2018-06-14 20:55:38 -07:00

src

qcacld-3.0: Avoid potential buffer over-flow in cfg80211 scan

2018-06-15 12:39:24 -07:00