lisa/android_kernel_xiaomi_sm8350
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
9f72aa9c82
android_kernel_xiaomi_sm8350/core
History
Rakesh Pillai 9f72aa9c82 qcacld-3.0: Fix use-after-free when skb is copied 
When we receive a packet from the network stack for
transmission, we make a copy of this skb and free the
shared skb before trying to trasnmit it.

Currently the mac address used for tdls operations is
taken as a pointer to the original skb, which gets freed
after the skb_unshare.

Copy the mac address into a local stack memory instead
of using a pointer to the skb data to avoid the
use-after-free condition.

Change-Id: I9f0e6260476d5a41b7209a6a599f50a548b953b5
CRs-Fixed: 2733445
2020-07-20 07:52:22 -07:00
..
bmi qcacld-3.0: Add code to support modularizing ICNSS ICNSS2 and CNSS2 2020-06-29 07:38:04 -07:00
cds qcacld-3.0: Add P2P UDP/TCP checksum offload INI entry 2020-07-12 01:49:28 -07:00
dp qcacld-3.0: Handle raw frames and invalid flow_idx frames 2020-07-20 04:46:39 -07:00
hdd qcacld-3.0: Fix use-after-free when skb is copied 2020-07-20 07:52:22 -07:00
mac Release 5.2.0.194O 2020-07-20 04:46:45 -07:00
pld qcacld-3.0: Enable both SNOC and IPCI PLD layer for ICNSS2 2020-07-13 23:39:24 -07:00
sap qcacld-3.0: Introduce getband vendor command 2020-07-14 22:45:22 -07:00
sme qcacld-3.0: back to back roaming disable cmds block wpa supplicant for 2s 2020-07-18 22:30:26 -07:00
wma qcacld-3.0: Move rso related process to connection manager [PART 1] 2020-07-18 18:13:31 -07:00