OSDN Git Service

(root) / android-x86 / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 86c8d58) | patch
usbip: vudc_tx: fix v_send_ret_submit() vulnerability to null xfer buffer
authorShuah Khan <shuahkh@osg.samsung.com>
Sat, 23 Dec 2017 02:23:47 +0000 (19:23 -0700)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Wed, 17 Jan 2018 08:38:56 +0000 (09:38 +0100)
commit8ab8c6e6607a14ebd54319535b17e384d2872df9
treea049bf33109ddde3890e1cf7b80b94536329d41btree | snapshot
parent86c8d58fc7538d0f44367f49d24568e925049c0dcommit | diff
usbip: vudc_tx: fix v_send_ret_submit() vulnerability to null xfer buffer

commit 5fd77a3a0e408c23ab4002a57db980e46bc16e72 upstream.

v_send_ret_submit() handles urb with a null transfer_buffer, when it
replays a packet with potential malicious data that could contain a
null buffer.

Add a check for the condition when actual_length > 0 and transfer_buffer
is null.

Signed-off-by: Shuah Khan <shuahkh@osg.samsung.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
drivers/usb/usbip/vudc_tx.c diff | blob | history
kernel
About OSDN
Find Software
Develop Software
Help