evie/android_kernel_oneplus_msm8998
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
android_kernel_oneplus_msm8998/drivers/misc/ibmasm
History
Jann Horn ba20e67aee ibmasm: don't write out of bounds in read handler 
commit a0341fc1981a950c1e902ab901e98f60e0e243f3 upstream.

This read handler had a lot of custom logic and wrote outside the bounds of
the provided buffer. This could lead to kernel and userspace memory
corruption. Just use simple_read_from_buffer() with a stack buffer.

Fixes: 1da177e4c3 ("Linux-2.6.12-rc2")
Cc: stable@vger.kernel.org
Signed-off-by: Jann Horn <jannh@google.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2018-07-17 11:31:42 +02:00
..
command.c misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
dot_command.c misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
dot_command.h misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
event.c misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
heartbeat.c misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
i2o.h misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
ibmasm.h misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
ibmasmfs.c ibmasm: don't write out of bounds in read handler 2018-07-17 11:31:42 +02:00
lowlevel.c misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
lowlevel.h misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
Makefile
module.c misc: ibmasm: remove unnecessary pci_set_drvdata() 2013-09-26 09:13:54 -07:00
r_heartbeat.c misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
remote.c
remote.h misc latin1 to utf8 conversions 2012-01-02 13:04:55 +01:00
uart.c 8250: three way resolve of the 8250 diffs 2012-07-17 09:11:50 -07:00