USB: serial: safe_serial: fix information leak in completion handler - xavi/android_kernel_m2note - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Johan Hovold <johan@kernel.org>	2017-03-06 17:36:41 +0100
committer	Moyster <oysterized@gmail.com>	2017-06-17 15:53:05 +0200
commit	74c12dc5eca262352e17c1c90a00d755c3a19176 (patch)
tree	7b35594aa5ad62e8f0bd582072a207174fa55820 /include/linux/stackprotector.h
parent	871b3ad6c3b42b721bd1416ac3341f7542f9f5bf (diff)

USB: serial: safe_serial: fix information leak in completion handler

commit 8c76d7cd520ebffc1ea9ea0850d87a224a50c7f2 upstream. Add missing sanity check to the bulk-in completion handler to avoid an integer underflow that could be triggered by a malicious device. This avoids leaking up to 56 bytes from after the URB transfer buffer to user space. Fixes: 1da177e4c3f4 ("Linux-2.6.12-rc2") Signed-off-by: Johan Hovold <johan@kernel.org> Signed-off-by: Willy Tarreau <w@1wt.eu>

Diffstat (limited to 'include/linux/stackprotector.h')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: