qcacmn: Fix potential OOB read in util_scan_parse_mbssid()
If the length of the MBSSID IE is 0, then there is a potential OOB read in util_scan_parse_mbssid(), when the Max BSSID indicator field is accessed. To fix this, do not proceed with MBSSID parsing if the length of the MBSSID IE is zero. Change-Id: I2c7a7641b77fed20a910cb77035588a7540caa62 CRs-Fixed: 3717567
Please register or sign in to comment