49bc9ea8c034c18527bf550c881ffc13c8465ebb - kernel/msm

commit	49bc9ea8c034c18527bf550c881ffc13c8465ebb	[log] [tgz]
author	Zhao Xuewen <zhaoxuewen@huawei.com>	Tue Apr 12 20:09:57 2016 +0800
committer	Zhao Xuewen <zhaoxuewen@huawei.com>	Tue Apr 12 20:09:57 2016 +0800
tree	1cdfd2aa0eeec2ccbe8033822b31f5efeb69468f
parent	a8d9160f35b39c47eee68153b72d90ce5a12aa0e [diff]

haptic driver:Elevation of Privilege in Texas Instrument Haptic Driver

There is not a parameter check for parameter len, which is passed from user space.
This vulnerability could trigger arbitrary code execution in the kernel.

CVE-2016-2409 Bug:ANDROID-25981545

Change-Id: I3f99a49e83765742b7e3897caa6851a6410e0f97
Signed-off-by: Zhao Xuewen <zhaoxuewen@huawei.com>

drivers/haptics/drv2605.c[diff]

1 file changed

tree: 1cdfd2aa0eeec2ccbe8033822b31f5efeb69468f