mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start - kernel/linux.git

diff options

author	Zhang Xiaohui <ruc_zhangxiaohui@163.com>	2020-12-06 11:48:01 +0300
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2021-01-09 15:46:25 +0300
commit	94cc73b27a2599e4c88b7b2d6fd190107c58e480 (patch)
tree	63e62baf95a80b8f218a1d78f1835961bc3a86a6 /fs/xfs/linux-2.6/xfs_aops.c
parent	ab7709b551de24e7bebf44946120e6740b1e28db (diff)
download	linux-94cc73b27a2599e4c88b7b2d6fd190107c58e480.tar.xz

mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start

[ Upstream commit 5c455c5ab332773464d02ba17015acdca198f03d ] mwifiex_cmd_802_11_ad_hoc_start() calls memcpy() without checking the destination size may trigger a buffer overflower, which a local user could use to cause denial of service or the execution of arbitrary code. Fix it by putting the length check before calling memcpy(). Signed-off-by: Zhang Xiaohui <ruc_zhangxiaohui@163.com> Signed-off-by: Kalle Valo <kvalo@codeaurora.org> Link: https://lore.kernel.org/r/20201206084801.26479-1-ruc_zhangxiaohui@163.com Signed-off-by: Sasha Levin <sashal@kernel.org>

Diffstat (limited to 'fs/xfs/linux-2.6/xfs_aops.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: