Re: [PATCH 4/6] staging: rtl8723bs: Fix potential overuse of kernel memory

Greg KH Mon, 10 Feb 2020 10:29:00 -0800

On Mon, Feb 10, 2020 at 12:02:33PM -0600, Larry Finger wrote:
> In routine wpa_supplicant_ioctl(), the user-controlled p->length is
> checked to be at least the size of struct ieee_param size, but the code
> does not detect the case where p->length is greater than the size
> of the struct, thus a malicious user could be wasting kernel memory.
> Fixes commit 554c0a3abf216 ("staging: Add rtl8723bs sdio wifi driver").
> 
> Reported by: Pietro Oliva <pietrol...@gmail.com>
> Cc: Pietro Oliva <pietrol...@gmail.com>
> Cc: Stable <sta...@vger.kernel.org>
> Fixes: 554c0a3abf216 ("staging: Add rtl8723bs sdio wifi driver").
> Signed-off-by: Larry Finger <larry.fin...@lwfinger.net>
> -# Please enter the commit message for your changes. Lines starting
> ---


Funny line :)

I'll go edit it...

thanks,

greg k-h
_______________________________________________
devel mailing list
de...@linuxdriverproject.org
http://driverdev.linuxdriverproject.org/mailman/listinfo/driverdev-devel

Re: [PATCH 4/6] staging: rtl8723bs: Fix potential overuse of kernel memory

Reply via email to