redonkable
/
alistair23-linux
1
0
Fork 0
Code Releases Activity
alistair23-linux/drivers/staging/wlan-ng
History
Rustam Kovhaev c570a3d660 staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb() 
commit fea22e159d upstream.

let's use usb_find_common_endpoints() to discover endpoints, it does all
necessary checks for type and xfer direction

remove memset() in hfa384x_create(), because we now assign endpoints in
prism2sta_probe_usb() and because create_wlan() uses kzalloc() to
allocate hfa384x struct before calling hfa384x_create()

Fixes: faaff97656 ("staging: wlan-ng: properly check endpoint types")
Reported-and-tested-by: syzbot+22794221ab96b0bab53a@syzkaller.appspotmail.com
Link: https://syzkaller.appspot.com/bug?extid=22794221ab96b0bab53a
Signed-off-by: Rustam Kovhaev <rkovhaev@gmail.com>
Cc: stable <stable@vger.kernel.org>
Link: https://lore.kernel.org/r/20200804145614.104320-1-rkovhaev@gmail.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 		2020-09-17 13:47:51 +02:00
..
Kconfig staging/wlan-ng: add CRC32 dependency in Kconfig 2020-01-09 10:19:46 +01:00
Makefile
README
cfg80211.c staging: wlan-ng: fix exit return when sme->key_idx >= NUM_WEPKEYS 2019-10-14 15:40:08 +02:00
hfa384x.h staging: wlan-ng: line over 80 character limit 2019-03-18 18:53:17 +01:00
hfa384x_usb.c staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb() 2020-09-17 13:47:51 +02:00
p80211conv.c staging: wlan-ng: Replace long int with long 2018-10-19 21:10:45 +02:00
p80211conv.h staging: wlan-ng: convert P80211SKB_RXMETA to inline function in p80211conv 2018-05-25 18:44:14 +02:00
p80211hdr.h staging: wlan-ng: replace WLAN_CTL_FRAMELEN with inline function in p80211hdr.h 2018-06-28 22:12:50 +09:00
p80211ioctl.h
p80211metadef.h staging: wlan-ng: remove "autogenerated code" comments 2018-09-28 14:43:52 +02:00
p80211metastruct.h staging: wlan-ng: remove "autogenerated code" comments 2018-09-28 14:43:52 +02:00
p80211mgmt.h
p80211msg.h
p80211netdev.c staging: wlan-ng: rename DIDmib_dot11mac_dot11OperationTable_dot11MACAddress in p80211metadef.h 2018-09-28 14:42:41 +02:00
p80211netdev.h
p80211req.c staging: wlan-ng: make switch case block format consistent 2018-09-28 14:43:52 +02:00
p80211req.h
p80211types.h staging: wlan-ng: remove unused definitions from p80211types.h 2018-08-05 16:12:42 +02:00
p80211wep.c
prism2fw.c staging: wlan-ng: prism2fw.c: Fix "Possible unnecessary 'out of memory' message" checkpatch.pl warning" 2019-01-07 08:56:07 +01:00
prism2mgmt.c staging: wlan-ng: ensure error return is actually returned 2020-02-01 09:34:33 +00:00
prism2mgmt.h
prism2mib.c staging: wlan-ng: Remove function prism2mib_excludeunencrypted() 2019-08-02 13:55:38 +02:00
prism2sta.c staging: wlan-ng: use "%*pE" for serial number 2019-07-22 07:34:12 +02:00
prism2usb.c staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb() 2020-09-17 13:47:51 +02:00

README 

TODO:
	- checkpatch.pl cleanups
	- sparse warnings
	- move to use the in-kernel wireless stack

Please send any patches or complaints about this driver to Greg
Kroah-Hartman <greg@kroah.com> and don't bother the upstream wireless
kernel developers about it, they want nothing to do with it.