refs/tags/android-security-10.0.0_r52 - platform/external/ppp

tag	fe995e9524f63f8d2af1ed67a34706bacee42565
tagger	The Android Open Source Project <initial-contribution@android.com>	Mon Mar 01 18:46:03 2021 -0800
object	7dd04b54cb44ee80a242636977ac63d963370aa2

Android Security 10.0.0 Release 52 (7070703)

commit	7dd04b54cb44ee80a242636977ac63d963370aa2	[log] [tgz]
author	Paul Mackerras <paulus@ozlabs.org>	Mon Feb 03 15:53:28 2020 +1100
committer	Anis Assi <anisassi@google.com>	Thu Apr 09 13:47:28 2020 -0700
tree	eb1534824b8c971f4195b967e9adb3d2b974ba3b
parent	7aee9a1cc3b2f2aba3e660bce7357620f2bd37f7 [diff]

pppd: Fix bounds check in EAP code

Given that we have just checked vallen <= len, it can never be the case
that vallen >= len + sizeof(rhostname).  This fixes the check so we
actually avoid overflowing the rhostname array.

Reported-by: Ilja Van Sprundel <ivansprundel@ioactive.com>
Signed-off-by: Paul Mackerras <paulus@ozlabs.org>
Bug: 151153886
Change-Id: Ibc29e1b5b17ddee256b1ff5f3e9909347403a791
Merged-In: Ibc29e1b5b17ddee256b1ff5f3e9909347403a791
(cherry picked from commit f9fec5c36952301e585a420f31e96d35a60d0498)

pppd/eap.c[diff]

1 file changed

tree: eb1534824b8c971f4195b967e9adb3d2b974ba3b