Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / kernel / shift / mainline / 1bb9914e1730417d530de9ed37e59efdc647146b
commit1bb9914e1730417d530de9ed37e59efdc647146b[log] [tgz]
authorTobias Herzog <t-herzog@gmx.de>Thu Mar 30 22:15:10 2017 +0200
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Sat Apr 01 11:05:03 2017 +0200
tree86657e8ac8ebd75547ee47dd558b6ff360228857
parent2f86a96be0ccb1302b7eee7855dbee5ce4dc5dfb [diff]
cdc-acm: fix possible invalid access when processing notification

Notifications may only be 8 bytes long. Accessing the 9th and
10th byte of unimplemented/unknown notifications may be insecure.
Also check the length of known notifications before accessing anything
behind the 8th byte.

Signed-off-by: Tobias Herzog <t-herzog@gmx.de>
Acked-by: Oliver Neukum <oneukum@suse.com>
Cc: stable <stable@vger.kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: 86657e8ac8ebd75547ee47dd558b6ff360228857
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitattributes
  26. .gitignore
  27. .mailmap
  28. COPYING
  29. CREDITS
  30. Kbuild
  31. Kconfig
  32. MAINTAINERS
  33. Makefile
  34. README