Bluetooth: qca: fix info leak when fetching fw build id (cda0d6a1) · Commits · Mirrors / git.yoctoproject.org / linux-yocto

Commit cda0d6a1 authored May 01, 2024 by

Johan Hovold Committed by Luiz Augusto von Dentz May 03, 2024

Bluetooth: qca: fix info leak when fetching fw build id

Add the missing sanity checks and move the 255-byte build-id buffer off
the stack to avoid leaking stack data through debugfs in case the
build-info reply is malformed.

Fixes: c0187b0b

 ("Bluetooth: btqca: Add support to read FW build version for WCN3991 BTSoC")
Cc: stable@vger.kernel.org	# 5.12
Signed-off-by: Johan Hovold <johan+linaro@kernel.org>
Signed-off-by: Luiz Augusto von Dentz <luiz.von.dentz@intel.com>

parent dd336649

Hide whitespace changes

Inline Side-by-side

Please register or to comment