commit | 36c093ec2ff78eac0ef23b1f99bf5d24bca61676 | [log] [tgz] |
---|---|---|
author | jitiphil <jitiphil@codeaurora.org> | Thu Apr 05 23:53:10 2018 +0530 |
committer | Les Lee <lesl@google.com> | Fri Jul 12 08:27:40 2019 +0000 |
tree | 346814963db25a147ec010830c8c66db81b4797c | |
parent | 13bbfd2acaff69d3caef580115b308743ed4eacb [diff] |
qcacld-3.0: Fix buffer overflow in htt_t2h_msg_handler_fast Currently variable "num_mpdu_ranges" is from message, which is used directly without any validation which causes buffer over-write. To avoid buffer over-write add check for the valid num_mpdu_ranges Change-Id: I54e138d4bd63cbe7a0ae4faf0fe9d8e59ca92c71 CRs-Fixed: 2213655 Bug: 136195284 Signed-off-by: Srinivas Girigowda <quic_sgirigow@quicinc.com>