Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / kernel / common / 5fd77a3a0e408c23ab4002a57db980e46bc16e72
commit5fd77a3a0e408c23ab4002a57db980e46bc16e72[log] [tgz]
authorShuah Khan <shuahkh@osg.samsung.com>Fri Dec 22 19:23:47 2017 -0700
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Thu Jan 04 17:07:27 2018 +0100
treea0531af0618c2093491d0bbe4d26ffd6b6efb0ce
parente1346fd87c71a1f61de1fe476ec8df1425ac931c [diff]
usbip: vudc_tx: fix v_send_ret_submit() vulnerability to null xfer buffer

v_send_ret_submit() handles urb with a null transfer_buffer, when it
replays a packet with potential malicious data that could contain a
null buffer.

Add a check for the condition when actual_length > 0 and transfer_buffer
is null.

Signed-off-by: Shuah Khan <shuahkh@osg.samsung.com>
Cc: stable <stable@vger.kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: a0531af0618c2093491d0bbe4d26ffd6b6efb0ce
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitattributes
  26. .gitignore
  27. .mailmap
  28. COPYING
  29. CREDITS
  30. Kbuild
  31. Kconfig
  32. MAINTAINERS
  33. Makefile
  34. README