lisa/android_kernel_xiaomi_sm8350
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
a6e61b197b
android_kernel_xiaomi_sm8350/core
History
Jeff Johnson a6e61b197b qcacld-3.0: Avoid buffer overread when parsing PNO commands 
There are currently three issues which can result in a buffer overread
when processing PNO vendor commands:

1) __wlan_hdd_cfg80211_set_passpoint_list() specifies the wrong policy
   when invoking nla_parse().
2) hdd_extscan_passpoint_fill_network_list() does not specify a policy
   when invoking nla_parse().
3) __wlan_hdd_cfg80211_set_epno_list() specifies a policy but not all
   of the attributes that are parsed are present in the policy.

To prevent buffer overread:
1) Update __wlan_hdd_cfg80211_set_passpoint_list() and
   hdd_extscan_passpoint_fill_network_list() to use the policy
   wlan_hdd_pno_config_policy.
2) Update wlan_hdd_pno_config_policy to contain all the fixed-length
   attributes needed by __wlan_hdd_cfg80211_set_passpoint_list(),
   hdd_extscan_passpoint_fill_network_list(), and
   __wlan_hdd_cfg80211_set_epno_list().

Change-Id: I4a20e77ce87967ae78323b83a2aa9085fed2647f
CRs-Fixed: 2054770
2017-06-20 20:11:35 -07:00
..
bmi qcacld-3.0: enable FW dump for SDIO 2017-06-09 15:36:37 -07:00
cds qcacld-3.0: Send DBS Scan selection policy command to WMI 2017-06-14 08:23:57 -07:00
dp qcacld-3.0: Add ipa_uc_rx_ring_elem_t for 32-bit platform 2017-06-20 19:36:16 -07:00
hdd qcacld-3.0: Avoid buffer overread when parsing PNO commands 2017-06-20 20:11:35 -07:00
mac Release 5.2.0.30X 2017-06-20 19:36:18 -07:00
pld qcacld-3.0: enable FW dump for SDIO 2017-06-09 15:36:37 -07:00
sap qcacld-3.0: Fix sap context memory leak 2017-06-16 05:26:11 -07:00
sme qcacld-3.0: Wait for roam to get stopped during disconnect 2017-06-20 16:17:39 -07:00
wma qcacld-3.0: Wait for roam to get stopped during disconnect 2017-06-20 16:17:39 -07:00