nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION (4fbcc1a4) · Commits · Mirrors / github.com / raspberrypi_linux · GitLab

Commit 4fbcc1a4 authored Jan 11, 2022 by

Jordy Zomer Committed by David S. Miller Jan 12, 2022

nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION



It appears that there are some buffer overflows in EVT_TRANSACTION.
This happens because the length parameters that are passed to memcpy
come directly from skb->data and are not guarded in any way.

Signed-off-by: Jordy Zomer <jordy@pwning.systems>
Reviewed-by: Krzysztof Kozlowski <krzysztof.kozlowski@canonical.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

parent 2a4d75bf

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit f444ecd3
· Jun 19, 2022

mentioned in commit f444ecd3

mentioned in commit f444ecd3f57f4ba5090fe8b6756933e37de4226e

Toggle commit list
mirror @mirror
mentioned in commit a5989ae3
· Jun 19, 2022

mentioned in commit a5989ae3

mentioned in commit a5989ae3c53be69b2658ce22fa11ec30281aead0

Toggle commit list

Please register or to comment