git.openpandora.org / pandora-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8311f0d) | patch
NFC: Prevent multiple buffer overflows in NCI
authorDan Rosenberg <dan.j.rosenberg@gmail.com>
Mon, 25 Jun 2012 14:05:27 +0000 (16:05 +0200)
committerSamuel Ortiz <sameo@linux.intel.com>
Mon, 25 Jun 2012 14:38:40 +0000 (16:38 +0200)
commit67de956ff5dc1d4f321e16cfbd63f5be3b691b43
tree662e4b010ad36815a639a5f5289818b61ea3104ftree | snapshot
parent8311f0da95d483ceb76bafae6e0a8c90531fb577commit | diff
NFC: Prevent multiple buffer overflows in NCI

Fix multiple remotely-exploitable stack-based buffer overflows due to
the NCI code pulling length fields directly from incoming frames and
copying too much data into statically-sized arrays.

Signed-off-by: Dan Rosenberg <dan.j.rosenberg@gmail.com>
Cc: stable@kernel.org
Cc: security@kernel.org
Cc: Lauro Ramos Venancio <lauro.venancio@openbossa.org>
Cc: Aloisio Almeida Jr <aloisio.almeida@openbossa.org>
Cc: Samuel Ortiz <sameo@linux.intel.com>
Cc: David S. Miller <davem@davemloft.net>
Acked-by: Ilan Elias <ilane@ti.com>
Signed-off-by: Samuel Ortiz <sameo@linux.intel.com>
net/nfc/nci/ntf.c diff | blob | history
Pandora Kernel Repository