staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext() (5f1c7031) · Commits · Mirrors / git.kernel.org / pub_scm_linux_kernel_git_stable_linux · GitLab

Commit 5f1c7031 authored Jul 09, 2023 by

Zhang Shurong Committed by Greg Kroah-Hartman Jul 27, 2023

staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()

The "exc->key_len" is a u16 that comes from the user.  If it's over
IW_ENCODING_TOKEN_MAX (64) that could lead to memory corruption.

Fixes: b121d848

 ("staging: ks7010: simplify calls to memcpy()")
Cc: stable <stable@kernel.org>
Signed-off-by: Zhang Shurong <zhang_shurong@foxmail.com>
Reviewed-by: Dan Carpenter <dan.carpenter@linaro.org>
Link: https://lore.kernel.org/r/tencent_5153B668C0283CAA15AA518325346E026A09@qq.com


Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

parent 4912649e

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit baf420e3
· Aug 04, 2023

mentioned in commit baf420e3

mentioned in commit baf420e30364ef9efe3e29a5c0e01e612aebf3fe

Toggle commit list
mirror @mirror
mentioned in commit 7ae9f55a
· Aug 04, 2023

mentioned in commit 7ae9f55a

mentioned in commit 7ae9f55a495077f838bab466411ee6f38574df9b

Toggle commit list
mirror @mirror
mentioned in commit b1b04b56
· Aug 04, 2023

mentioned in commit b1b04b56

mentioned in commit b1b04b56745bc79286c80aa876fabfab1e08ebf1

Toggle commit list
mirror @mirror
mentioned in commit 9496fb96
· Aug 12, 2023

mentioned in commit 9496fb96

mentioned in commit 9496fb96ddeb740dc6b966f4a7d8dfb8b93921c6

Toggle commit list
mirror @mirror
mentioned in commit 663fff29
· Aug 12, 2023

mentioned in commit 663fff29

mentioned in commit 663fff29fd613e2b0d30c4138157312ba93c4939

Toggle commit list
mirror @mirror
mentioned in commit 5373a1aa
· Aug 12, 2023

mentioned in commit 5373a1aa

mentioned in commit 5373a1aa91b2298f9305794b8270cf9896be96b6

Toggle commit list

Please register or to comment