Google Git
Sign in
android / kernel / common / 93a3a32554079432b49cf87f326607b2a2fab4f2
commit93a3a32554079432b49cf87f326607b2a2fab4f2[log] [tgz]
authorJohannes Berg <johannes.berg@intel.com>Wed Oct 05 21:24:10 2022 +0200
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Sat Oct 15 07:59:03 2022 +0200
tree47571a8a24f15b6636955782e83c4afc7b5b5ba5
parentfff244e9171b2ca692469d41c68b36607bd73ab0 [diff]
wifi: mac80211: fix crash in beacon protection for P2P-device

commit b2d03cabe2b2e150ff5a381731ea0355459be09f upstream.

If beacon protection is active but the beacon cannot be
decrypted or is otherwise malformed, we call the cfg80211
API to report this to userspace, but that uses a netdev
pointer, which isn't present for P2P-Device. Fix this to
call it only conditionally to ensure cfg80211 won't crash
in the case of P2P-Device.

This fixes CVE-2022-42722.

Reported-by: Sönke Huster <shuster@seemoo.tu-darmstadt.de>
Fixes: 9eaf183af741 ("mac80211: Report beacon protection failures to user space")
Signed-off-by: Johannes Berg <johannes.berg@intel.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: 47571a8a24f15b6636955782e83c4afc7b5b5ba5
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. LICENSES/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .clang-format
  24. .cocciconfig
  25. .get_maintainer.ignore
  26. .gitattributes
  27. .gitignore
  28. .mailmap
  29. COPYING
  30. CREDITS
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. README