commit 36c093ec2ff78eac0ef23b1f99bf5d24bca61676
author jitiphil <jitiphil@codeaurora.org> Thu Apr 05 23:53:10 2018 +0530
committer Les Lee <lesl@google.com> Fri Jul 12 08:27:40 2019 +0000
tree 346814963db25a147ec010830c8c66db81b4797c
parent 13bbfd2acaff69d3caef580115b308743ed4eacb

qcacld-3.0: Fix buffer overflow in htt_t2h_msg_handler_fast

Currently variable "num_mpdu_ranges" is from message, which is used
directly without any validation which causes buffer over-write.

To avoid buffer over-write add check for the valid num_mpdu_ranges

Change-Id: I54e138d4bd63cbe7a0ae4faf0fe9d8e59ca92c71
CRs-Fixed: 2213655
Bug: 136195284
Signed-off-by: Srinivas Girigowda <quic_sgirigow@quicinc.com>