android_kernel_samsung_sm8650-modules

samsung-sm8650/android_kernel_samsung_sm8650-modules

Go to file

Abhinav Kumar e48f34df00 qcacld-3.0: Possible NULL Pointer Dereference in wma_send_bcn_buf_ll

While handling the WMI_HOST_SWBA_EVENTID WMI FW event, driver invokes
corresponding wma handler wma_beacon_swba_handler. The event argument
comes directly from the FW. Towards the end of the function,
wma_beacon_swba_handler invokes wma_send_bcn_buf_ll and passes the
original TLV structure, param_buf, as an argument. wma_send_bcn_buf_ll
pull tim_info and p2p_noa_info from the param_buf structure. These
structures can be optionally defined in the message with zero length
resulting in them being NULL pointers. Later, throughout the function
they are then deferenced without every checking if they are in fact NULL.

Fix is to make sure in wma_send_bcn_buf_ll, param_buf->tim_info and
param_buf->p2p_noa_info dereferenced only after NULL check.

Change-Id: Ic27b59dd35f74413e9a978627047855e655b9ed1
CRs-Fixed: 2331956

2018-10-15 22:50:27 -07:00

components

qcacld-3.0: Add MLME INI of EDCA parameters

2018-10-12 19:16:56 -07:00

configs

qcacld-3.0: expose TSF to user space by file system on Vipertooth

2018-10-13 15:23:10 -07:00

core

qcacld-3.0: Possible NULL Pointer Dereference in wma_send_bcn_buf_ll

2018-10-15 22:50:27 -07:00

uapi/linux

qcacld-3.0: Fix tab stop checkpatch warnings

2018-09-13 13:20:38 -07:00

Android.mk

qcacld-3.0: move wlan_mac.bin to /mnt/vendor/persist

2018-10-04 20:12:46 -07:00

Kbuild

qcacld-3.0: expose TSF to user space by file system on Vipertooth

2018-10-13 15:23:10 -07:00

Kconfig

qcacld-3.0: Add SARV1 to SARV2 feature flag

2018-07-31 12:58:49 -07:00

Makefile

qcacld-3.0: Pass WLAN_ROOT value for make clean

2018-06-09 00:09:16 -07:00

README.txt

Initial readme for WLAN Host Driver for iHelium

2015-04-06 11:45:23 -07:00

README.txt

This is CNSS WLAN Host Driver for products starting from iHelium