samsung-sm8650/android_kernel_samsung_sm8650-modules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

qcacld-3.0: Sanitize the mc address list count

Browse Source 
In the target_if layer  based on the mc address list count the
filter params are filled and sent to the firmware. If the mc address
list passed is more than the maximum supported address list there
can be possible buffer overflow.

Sanitize the mc address list count to avoid any overflow.

CRs-Fixed: 2452131
Change-Id: I03208a5487cfd730e933666c47accb2e46fbbc72
This commit is contained in:
Arun Kumar Khandavalli
2019-05-28 18:41:27 +05:30
committed by nshrivas
parent 62dcf9883b
commit 32b2af4365
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
components/pmo/core/src/wlan_pmo_mc_addr_filtering.c
View File

@@ -341,6 +341,12 @@ static QDF_STATUS pmo_core_mc_addr_flitering_sanity(
return QDF_STATUS_E_INVAL;
}
if (vdev_ctx->vdev_mc_list_req.mc_cnt > PMO_MAX_MC_ADDR_LIST) {
pmo_debug("Passed more than max supported MC address count :%d",
vdev_ctx->vdev_mc_list_req.mc_cnt);
return QDF_STATUS_E_INVAL;
}
return QDF_STATUS_SUCCESS;
}
QDF_STATUS pmo_core_cache_mc_addr_list(