refs/tags/ASB-2020-05-05_4.4-o-mr1 - kernel/common.git

tag	315c2929e8b40c15c5c3b69567114c01ded70ca0
tagger	Todd Kjos <tkjos@google.com>	Mon May 04 18:07:22 2020 -0700
object	ecf2a5e60463acaba2da0988a8c6d0532dc56bc0

https://source.android.com/security/bulletin/2020-05-01
CVE-2020-0110
CVE-2019-19536

commit	ecf2a5e60463acaba2da0988a8c6d0532dc56bc0	[log] [tgz]
author	Tomas Bortoli <tomasbortoli@gmail.com>	Wed Jul 31 10:54:47 2019 -0400
committer	Todd Kjos <tkjos@google.com>	Fri May 01 17:09:06 2020 -0700
tree	59eaadcf19854ba871163f20e7e70e4eb28a5174
parent	6891b26a35da75bafe1a715cf2264cd06dbf873e [diff]

can: peak_usb: pcan_usb_pro: Fix info-leaks to USB devices

commit ead16e53c2f0ed946d82d4037c630e2f60f4ab69 upstream.

Uninitialized Kernel memory can leak to USB devices.

Fix by using kzalloc() instead of kmalloc() on the affected buffers.

Signed-off-by: Tomas Bortoli <tomasbortoli@gmail.com>
Reported-by: syzbot+d6a5a1a3657b596ef132@syzkaller.appspotmail.com
Fixes: f14e22435a27 ("net: can: peak_usb: Do not do dma on the stack")
Cc: linux-stable <stable@vger.kernel.org>
Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

drivers/net/can/usb/peak_usb/pcan_usb_pro.c[diff]

1 file changed