NFC: Fix to reslove the slab-out-bound issue

When received the read count from application more than MAX_NCI_BUFFER_SIZE
limiting the read count to MAX_NCI_BUFFER_SIZE.

Change-Id: Ib060b3b20fedc77a2e7a13bd1ac2b4c64da87a81

nfc/i2c_drv.c

@@ -278,6 +278,9 @@ ssize_t nfc_i2c_dev_read(struct file *filp, char __user *buf, size_t count,
 		return -ENODEV;
 	}
 	mutex_lock(&nfc_dev->read_mutex);
+	if (count > MAX_NCI_BUFFER_SIZE)
+		count = MAX_NCI_BUFFER_SIZE;
+
 	if (filp->f_flags & O_NONBLOCK) {
 		ret = i2c_master_recv(nfc_dev->i2c_dev.client, nfc_dev->read_kbuf, count);
 		pr_debug("%s: NONBLOCK read ret = %d\n", __func__, ret);