tag 94e0e649109d9c3f918fe6b033d4dacb21bb256d
tagger The Android Open Source Project <initial-contribution@android.com> Mon Dec 07 17:00:02 2020 -0800
object a5e7016c71dd24a08b8047c32c2d2977b59dfba9

Android Security 8.1.0 Release 83 (6893677)

commit a5e7016c71dd24a08b8047c32c2d2977b59dfba9
author Phil Burk <philburk@google.com> Tue Mar 03 12:51:15 2020 -0800
committer Anis Assi <anisassi@google.com> Thu Oct 08 17:08:21 2020 -0700
tree 8794ae4a023a71a700f2af5c0fa780bcd1afe447
parent f33ee7b4e91b3d612f2a74ebedbf1161bcc42db9

spdif: fix possible buffer overflow

SPDIF burst buffer could overflow if given bad data.
Check for frmsiz in header being too low.
Prevent numeric overflow in pending bytes calculation.
Prevent numeric overflow when checking for buffer overflow.

Bug: 145262423
Bug: 160265164
Test: tests/spdif_tests.cpp
Change-Id: Ifc7f8c8946388e19f39f35d649a5936568f8b9b2
Merged-In: Ifc7f8c8946388e19f39f35d649a5936568f8b9b2
(cherry picked from commit 1f73a728ef4b6d7d350c0715bdb10d59e5b5f9be)
(cherry picked from commit 762fbb3e093d9df9efea8d6a50cefca63dcfa765)