qcacmn: Fix out-of-bound read in T2LM IE parse API (5f7ea1bc) · Commits · CodeLinaro / la / platform / vendor / qcom-opensource / wlan / qca-wifi-host-cmn

Commit 5f7ea1bc authored Feb 17, 2024 by

Shashikala Prabhu Committed by Ravindra Konda Mar 03, 2024

qcacmn: Fix out-of-bound read in T2LM IE parse API

In wlan_mlo_parse_t2lm_ie(), the code is present to check if the frame
length is less than the parsed IE length plus size of ie_header structure
(2 bytes). If the above condition is false then the subsequent code will
access the data of parsed IE length plus size of extn_ie_header structure
(3 bytes).

To fix the out-of-bound read, check if the frame length is less than
parsed IE length plus size of extn_ie_header structure.
Also, added the code to return success if frame length is same as parsed
IE length.

Change-Id: I07c32379ecd18d253a82876127c33b4d95196dd2
CRs-Fixed: 3704796

parent 40fc5a84

Hide whitespace changes

Inline Side-by-side

lnx build @lnxbuild
mentioned in commit 5d840f2b
· Apr 19, 2024

mentioned in commit 5d840f2b

mentioned in commit 5d840f2bdcbaf45a0fbccd5da7b70719bfba9b3f

Toggle commit list
lnx build @lnxbuild
mentioned in commit 512f447b
· Apr 26, 2024

mentioned in commit 512f447b

mentioned in commit 512f447bf9daeaeb04f41eaeb23c23fe9bc4b4cb

Toggle commit list
lnx build @lnxbuild
mentioned in commit 7b735da0
· Apr 30, 2024

mentioned in commit 7b735da0

mentioned in commit 7b735da06361de8bf0cd2ed275fc3337f6d0deca

Toggle commit list
lnx build @lnxbuild
mentioned in commit 27ba1f69
· May 03, 2024

mentioned in commit 27ba1f69

mentioned in commit 27ba1f6981aae742b9def612a25eca6bc4c621b6

Toggle commit list
Manifest Service @manifest_service
mentioned in commit 64537271
· May 06, 2024

mentioned in commit 64537271

mentioned in commit 64537271669b966711a305ac5f352d9207741348

Toggle commit list
lnx build @lnxbuild
mentioned in commit b1f73857
· May 15, 2024

mentioned in commit b1f73857

mentioned in commit b1f73857d4f16a62549c0296d0c759e8c8789329

Toggle commit list
lnx build @lnxbuild
mentioned in commit 58526c7f
· May 23, 2024

mentioned in commit 58526c7f

mentioned in commit 58526c7f3b5124b3a749767f7174ba3ba944173e

Toggle commit list
lnx build @lnxbuild
mentioned in commit 9080ae03
· May 24, 2024

mentioned in commit 9080ae03

mentioned in commit 9080ae03253cc20dbe5eb141b339980da20da7f8

Toggle commit list
Manifest Service @manifest_service
mentioned in commit 356676bb
· May 30, 2024

mentioned in commit 356676bb

mentioned in commit 356676bbee063fd2e43e29916f7de18df723679d

Toggle commit list

Please register or to comment