redonkable
/
alistair23-linux
1
0
Fork 0
Code Releases Activity
alistair23-linux/drivers/staging
History
Qiujun Huang 89d4acabb2 staging: wlan-ng: fix use-after-free Read in hfa384x_usbin_callback 
commit 1165dd73e8 upstream.

We can't handle the case length > WLAN_DATA_MAXLEN.
Because the size of rxfrm->data is WLAN_DATA_MAXLEN(2312), and we can't
read more than that.

Thanks-to: Hillf Danton <hdanton@sina.com>
Reported-and-tested-by: syzbot+7d42d68643a35f71ac8a@syzkaller.appspotmail.com
Signed-off-by: Qiujun Huang <hqjagain@gmail.com>
Cc: stable <stable@vger.kernel.org>
Link: https://lore.kernel.org/r/20200326131850.17711-1-hqjagain@gmail.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 		2020-04-01 11:02:17 +02:00
..
android staging: android: ashmem: Disallow ashmem memory from being remapped 2020-02-28 17:22:15 +01:00
axis-fifo staging: axis-fifo: add unspecified HAS_IOMEM dependency 2020-01-12 12:21:35 +01:00
board
clocking-wizard
comedi staging: comedi: ni_routes: allow partial routing information 2020-01-23 08:22:35 +01:00
emxx_udc staging: emxx_udc: remove local TRUE/FALSE definition 2019-09-12 10:35:51 +01:00
exfat staging: exfat: fix multiple definition error of `rename_file' 2019-12-17 19:55:33 +01:00
fbtft fbtft: Make sure string is NULL terminated 2019-12-31 16:45:42 +01:00
fieldbus dt-bindings: anybus-controller: move to staging/ tree 2019-09-12 10:35:51 +01:00
fsl-dpaa2 staging: fsl-dpaa2/ethsw: do not force user to bring interface down 2019-08-14 16:46:25 +02:00
fwserial
gasket Staging: gasket: Use temporaries to reduce line length. 2019-09-12 10:38:45 +01:00
gdm724x
goldfish staging: Remove dev_err() usage after platform_get_irq() 2019-07-30 20:50:04 +02:00
greybus staging: greybus: loopback_test: fix potential path truncations 2020-03-25 08:25:59 +01:00
gs_fpgaboot
iio staging: iio: ad9834: add a check for devm_clk_get 2019-12-31 16:44:11 +01:00
isdn staging: gigaset: add endpoint-type sanity check 2019-12-17 19:55:36 +01:00
kpc2000 staging: kpc2000: prevent underflow in cpld_reconfigure() 2020-04-01 11:02:16 +02:00
ks7010
media media: hantro: Fix broken media controller links 2020-03-12 13:00:21 +01:00
most staging: most: net: fix buffer overflow 2020-02-01 09:34:33 +00:00
mt7621-dma staging: Remove dev_err() usage after platform_get_irq() 2019-07-30 20:50:04 +02:00
mt7621-dts staging: mt7621-dts: add support for second network interface 2019-07-03 18:28:29 +02:00
mt7621-pci staging: mt7621-pci: add quirks for 'E2' revision using 'soc_device_attribute' 2020-02-01 09:34:47 +00:00
mt7621-pci-phy
mt7621-pinctrl staging: mt7621-pinctrl: Add of_node_put() before return 2019-07-22 07:34:15 +02:00
netlogic staging: netlogic: Change GFP_ATOMIC to GFP_KERNEL 2019-07-01 09:07:03 +02:00
nvec staging: nvec: make use of devm_platform_ioremap_resource 2019-09-12 10:35:50 +01:00
octeon staging/octeon: Use stubs for MIPS && !CAVIUM_OCTEON_SOC 2019-12-13 08:42:19 +01:00
octeon-usb usb: add a HCD_DMA flag instead of guestimating DMA capabilities 2019-08-21 10:03:35 -07:00
olpc_dcon staging: olpc_dcon: Remove TODO item 2019-07-30 09:52:04 +02:00
pi433 staging: pi433: Fix typo in documentation 2019-09-06 18:20:33 +02:00
qlge qlge: Fix build error without CONFIG_ETHERNET 2019-07-24 14:12:40 -07:00
ralink-gdma staging: Remove dev_err() usage after platform_get_irq() 2019-07-30 20:50:04 +02:00
rtl8188eu staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table 2020-04-01 11:02:16 +02:00
rtl8192e staging: rtl8192e: fix potential use after free 2019-12-04 22:30:47 +01:00
rtl8192u staging: rtl8192u: fix multiple memory leaks on error path 2019-12-31 16:43:10 +01:00
rtl8712 staging: rtl8712: fix interface sanity check 2019-12-17 19:55:34 +01:00
rtl8723bs staging: rtl8723bs: fix copy of overlapping memory 2020-02-28 17:22:26 +01:00
rts5208 staging: rts5208: Fix checkpath warning 2019-09-03 09:36:29 +02:00
sm750fb staging: sm750fb: fix odd license text 2019-08-15 14:43:57 +02:00
speakup staging/speakup: fix get_word non-space look-ahead 2020-03-25 08:25:55 +01:00
unisys Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net 2019-08-19 11:54:03 -07:00
uwb USB: Move wusbcore and UWB to staging as it is obsolete 2019-08-08 07:52:01 +02:00
vc04_services staging: vchiq: call unregister_chrdev_region() when driver registration fails 2019-12-17 19:55:34 +01:00
vme
vt6655 staging: vt6655: Fix memory leak in vt6655_probe 2019-10-07 12:34:55 +02:00
vt6656 staging: vt6656: fix sign of rx_dbm to bb_pre_ed_rssi. 2020-02-28 17:22:15 +01:00
wilc1000 staging: wilc1000: check if device is initialzied before changing vif 2019-12-31 16:44:28 +01:00
wlan-ng staging: wlan-ng: fix use-after-free Read in hfa384x_usbin_callback 2020-04-01 11:02:17 +02:00
wusbcore staging: wusbcore: Fix build error without CONFIG_USB 2019-08-09 14:56:57 +02:00
Kconfig Remove VirtualBox guest shared folders filesystem 2019-11-12 15:22:24 -08:00
Makefile Remove VirtualBox guest shared folders filesystem 2019-11-12 15:22:24 -08:00