Commit 5e96ce0d authored by Lee Gibson's avatar Lee Gibson Committed by Zheng Zengkai
Browse files

staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan 



stable inclusion
from stable-5.10.24
commit c5d3e25e1808b005f0ac9c8cf8aeff6ba006cb4f
bugzilla: 51348

--------------------------------

commit 8687bf9e upstream.

Function _rtl92e_wx_set_scan calls memcpy without checking the length.
A user could control that length and trigger a buffer overflow.
Fix by checking the length is within the maximum allowed size.

Reviewed-by: default avatarDan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: default avatarLee Gibson <leegib@gmail.com>
Cc: stable <stable@vger.kernel.org>
Link: https://lore.kernel.org/r/20210226145157.424065-1-leegib@gmail.com


Signed-off-by: default avatarGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: default avatarChen Jun <chenjun102@huawei.com>
Acked-by: default avatar  Weilong Chen <chenweilong@huawei.com>
Signed-off-by: default avatarZheng Zengkai <zhengzengkai@huawei.com>
parent 9139acd9
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment