lisa/android_kernel_xiaomi_sm8350
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Kernel Tree For Xiaomi 11 Lite NE 5G
10,195 Commits 2 Branches 0 Tags 5.2 GiB
C 98.1%
Assembly 1.1%
Makefile 0.3%
Shell 0.2%
Python 0.1%
a4a012ca2e
Go to file
gaurank kathpalia a4a012ca2e qcacld-3.0: Add length check in wma_process_rmf_frame 
The driver verifies the replay_attack in protected
management frames in the API wma_is_ccmp_pn_replay_attack
The API expects a CCMP header pointer, but it may happen that
the size of the total frame is less than the size of ieee frame
+ the CCMP header length. In that case the CCMP pointer will
point to some memory location  not allocated to the frame, which
will result to out of bound access.

Fix is to add a length check to memory allocated to wbuf in
wma_process_rmf_frame

Change-Id: I351fa671cb8728843c8843c27dd91bcb201abb42
CRs-Fixed: 2230976
2018-05-17 06:03:33 -07:00
components qcacld-3.0: Remove wake_lock and rm_lock when WDI_UNIFIED_API defined 2018-05-16 12:13:05 -07:00
core qcacld-3.0: Add length check in wma_process_rmf_frame 2018-05-17 06:03:33 -07:00
uapi/linux qcacld-3.0: uapi: Remove legacy markings 2018-04-24 14:48:24 -07:00
Android.mk qcacld-3.0: Correct symbolic link for wlan.ko 2017-08-06 05:00:09 -07:00
Kbuild qcacld-3.0: Change WLAN_FEATURE_HDD_MEMDUMP_ENABLE 2018-05-15 10:05:40 -07:00
Kconfig qcacld-3.0: Remove obsolete CONFIG_PRIMA_WLAN_11AC_HIGH_TP 2018-04-11 03:37:50 -07:00
Makefile qcacld-3.0: Allow out-of-tree build with relative path in M 2018-02-09 11:33:09 -08:00
README.txt

README.txt 

This is CNSS WLAN Host Driver for products starting from iHelium