Google Git
Sign in
android / kernel / mediatek / refs/tags/android-6.0.1_r0.6
tage2cea4c22bfa4120ab310ffd89bf86ff1dd77462
taggerThe Android Open Source Project <initial-contribution@android.com>Tue Dec 08 10:03:56 2015 -0800
object98a2f202c1ca10ce981a2e87be73b5bd7dd11540 
Android 6.0.1 Release 0.6
commit98a2f202c1ca10ce981a2e87be73b5bd7dd11540[log] [tgz]
authoryang-cy.chen <yang-cy.chen@mediatek.com>Thu Oct 29 15:34:35 2015 +0800
committerJin Qian <jinqian@google.com>Thu Oct 29 18:39:10 2015 +0000
tree458c3195177152e377b912ee7763c128c6496572
parent9e1c3961a2502b2a0f0b605ff435f8ffa0bcacc2 [diff]
mediatek:fix Buffer overflow in kernel dcm_state_store()

Problem:
Buffer overflow in kernel dcm_state_store() ,so that root user
can trivially freeze the device by writing a long string to
/sys/power/dcm_state.

Solution:
Restrict the amount of characters to read

Bug num:25290712

Change-Id: I7fde0ad6a1011ac97c9c351c91fe982dccdae9d0
Signed-off-by: yang-cy.chen <yang-cy.chen@mediatek.com>
(cherry picked from commit 1187714960b4e65ee1afdb44136e9cff2f5c3b75)
1 file changed
tree: 458c3195177152e377b912ee7763c128c6496572
  1. android/
  2. arch/
  3. block/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .gitignore
  24. .mailmap
  25. Android.mk
  26. build.config
  27. build.config.svelte
  28. build.sh
  29. CleanSpec.mk
  30. COPYING
  31. CREDITS
  32. Kbuild
  33. Kconfig
  34. MAINTAINERS
  35. Makefile
  36. README
  37. REPORTING-BUGS