John W. Linville aedec92268 airo: airo_get_encode{,ext} potential buffer overflow ...

Feeding the return code of get_wep_key directly to the length parameter
of memcpy is a bad idea since it could be -1...

Reported-by: Eugene Teo <eugeneteo@kernel.sg>
Signed-off-by: John W. Linville <linville@tuxdriver.com>

2009-05-11 15:07:01 -04:00

219 KiB

Raw Blame History

View Raw