Google Git
Sign in
android / kernel / mediatek / 4afa485f96571c751e4295b92effc95328c22b8b
commit4afa485f96571c751e4295b92effc95328c22b8b[log] [tgz]
authorDavid Chu <david.chu@mediatek.com>Mon Aug 06 17:58:30 2018 -0700
committerBen Fennema <fennema@google.com>Thu Aug 16 15:51:53 2018 -0700
tree3b004bc17c18fc68ecc079fafb3053c5488487f0
parentf06e9a0a06f3bea41be2e5281d9b019786c4d1fe [diff]
Security Patch:  fix ioctl vulnerability for WMT_IOCTL_SET_PATCH_INFO

[Detail]
If dowloadSeq is 0, it'll pass the error handle and cause KE issue.

[Solution]
Add condition that downloadSeq can not equal to zero.

CVE-2018-9397

Change-Id: I68a2d501c873c4d665634893066b6c0f03e1537c
Signed-off-by: Ben Fennema <fennema@google.com>
1 file changed
tree: 3b004bc17c18fc68ecc079fafb3053c5488487f0
  1. android/
  2. arch/
  3. block/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .gitignore
  24. .mailmap
  25. Android.mk
  26. build.config
  27. build.sh
  28. CleanSpec.mk
  29. COPYING
  30. CREDITS
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. README
  36. REPORTING-BUGS