android_kernel_xiaomi_sm8350

History

Pragaspathi Thilagaraj 28ffc04cc7 qcacld-3.0: Fix possible integer underflow in cfg80211_rx_mgmt In the function cfg80211_rx_mgmt, data_len is calculated as len - ieee80211_hdrlen(mgmt->frame_control). Len is not validated before this calculation. So a possible integer underflow will occur if len value is less than the value of ieee80211_hdrlen(mgmt->frame_control). Validate the value of len against ieee80211_hdrlen(mgmt->frame_control) in the caller. Change-Id: Iae776daf37b0c052bd4ce4da44ea728d121eae51 CRs-Fixed: 2263758	2018-07-24 02:53:54 -07:00
..
inc	qcacld-3.0: Check session Id against max adapters	2018-07-23 20:56:34 -07:00
src	qcacld-3.0: Fix possible integer underflow in cfg80211_rx_mgmt	2018-07-24 02:53:54 -07:00

Pragaspathi Thilagaraj 28ffc04cc7 qcacld-3.0: Fix possible integer underflow in cfg80211_rx_mgmt

In the function cfg80211_rx_mgmt, data_len is calculated as
len - ieee80211_hdrlen(mgmt->frame_control). Len is not
validated before this calculation. So a possible integer
underflow will occur if len value is less than the value of
ieee80211_hdrlen(mgmt->frame_control).

Validate the value of len against
ieee80211_hdrlen(mgmt->frame_control) in the caller.

Change-Id: Iae776daf37b0c052bd4ce4da44ea728d121eae51
CRs-Fixed: 2263758

2018-07-24 02:53:54 -07:00

inc

qcacld-3.0: Check session Id against max adapters

2018-07-23 20:56:34 -07:00

src

qcacld-3.0: Fix possible integer underflow in cfg80211_rx_mgmt

2018-07-24 02:53:54 -07:00