Google Git
Sign in
android / kernel / tegra / 5ed14fbc1ae9991ea2c11c037c33451fc7957a39
commit5ed14fbc1ae9991ea2c11c037c33451fc7957a39[log] [tgz]
authorDaniel Rosenberg <drosen@google.com>Mon Mar 12 15:57:54 2018 -0700
committerSecurityBot <android-nexus-securitybot@system.gserviceaccount.com>Tue Jul 03 10:22:53 2018 -0700
treea9ebd5b501c58ade3f34f41346e5f2f4fa038314
parentf7a4c053db8272ff190792131bb681d397533111 [diff]
ANDROID: HID: debug: check length in hid_debug_events_read() before copy_to_user()

If our length is greater than the size of the buffer, we
overflow the buffer

Bug: 71361580
Change-Id: I113a1955a2bac83c83084d5cd28d886175673219
Signed-off-by: Daniel Rosenberg <drosen@google.com>
1 file changed
tree: a9ebd5b501c58ade3f34f41346e5f2f4fa038314
  1. android/
  2. arch/
  3. block/
  4. chromeos/
  5. crypto/
  6. Documentation/
  7. drivers/
  8. firmware/
  9. fs/
  10. include/
  11. init/
  12. ipc/
  13. kernel/
  14. lib/
  15. mm/
  16. net/
  17. samples/
  18. scripts/
  19. security/
  20. sound/
  21. tools/
  22. usr/
  23. virt/
  24. .gitignore
  25. .mailmap
  26. build.config
  27. build.config.kasan
  28. COMMIT-QUEUE.ini
  29. COPYING
  30. CREDITS
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. PRESUBMIT.cfg
  36. README
  37. REPORTING-BUGS