lisa/android_kernel_xiaomi_sm8350
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
d9888ce77f
android_kernel_xiaomi_sm8350/core
History
Pragaspathi Thilagaraj d9888ce77f qcacld-3.0: Fix OOB write in wma_unified_debug_print_event_handler 
The routine wma_unified_debug_print_event_handler logs the data from debug
print event handler. The param event data from firmware is copied to a
destination buffer .If the maximum size of the data exceeds or equals
BIG_ENDIAN_MAX_DEBUG_BUF for big endian hosts then possible OOB write will
occur in wma_unified_debug_print_event_handler. For other hosts, OOB read
could occur if datalen exceeds maximum firmware message size
WMI_SVC_MAX_SIZE.

Add check to validate datalen doesnot exceed the maximum firmware msg size
WMI_SVC_MAX_SIZE. Return failure if it exceeds.
Add check to ensure datalen doesnot exceed or equal the maximum buffer
length value for big endian hosts BIG_ENDIAN_MAX_DEBUG_BUF.
Add null termination at the end of the data recieved from the firmware.

Change-Id: Ibb662cb8e17ef8be8b7591308c422a78b71e331a
CRs-Fixed: 2222533
2018-04-18 18:38:48 -07:00
..
bmi qcacld-3.0: Add support for QCA9379 on x86 platform 2018-02-28 05:29:39 -08:00
cds qcacld-3.0: Fix to set start/stop threshold from ini 2018-04-18 18:38:40 -07:00
dp qcacld-3.0: Fix a race btw tx and tx-compl 2018-04-14 07:37:26 -07:00
hdd qcacld-3.0: Remove obsolete SoftAP VSTA feature code 2018-04-18 18:38:24 -07:00
mac qcacld-3.0: Remove obsolete SoftAP VSTA feature code 2018-04-18 18:38:24 -07:00
pld qcacld-3.0: Do not compile pld_pcie file for non-pci case 2018-04-18 18:38:46 -07:00
sap qcacld-3.0: Remove DFS channels from scan list in case of MCC disallow 2018-04-16 16:56:40 -07:00
sme qcacld-3.0: Add new ini to set delay Hand-off period 2018-04-16 16:56:50 -07:00
wma qcacld-3.0: Fix OOB write in wma_unified_debug_print_event_handler 2018-04-18 18:38:48 -07:00