FEX-Emu/linux
1
0
Fork 0
mirror of https://github.com/FEX-Emu/linux.git synced 2025-02-09 04:51:05 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux/drivers/staging/vt6656
History
Xi Wang 201320435d staging: vt6656: integer overflows in private_ioctl() 
There are two potential integer overflows in private_ioctl() if
userspace passes in a large sList.uItem / sNodeList.uItem.  The
subsequent call to kmalloc() would allocate a small buffer, leading
to a memory corruption.

Reported-by: Dan Rosenberg <drosenberg@vsecurity.com>
Signed-off-by: Xi Wang <xi.wang@gmail.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
2011-11-30 19:29:40 +09:00
..
80211hdr.h
80211mgr.c
staging: vt6656: 80211mgr.c: Code cleanup, removed return of void funcs.
2011-11-30 19:28:18 +09:00
80211mgr.h
staging: vt6656: removed not useful comments
2010-08-31 11:14:39 -07:00
aes_ccmp.c
Staging: vt6656: fix up built-in compilation together with rt2870
2010-06-18 10:37:48 -07:00
aes_ccmp.h
baseband.c
staging: vt6656: baseband.c: Remove commented code
2011-11-30 19:28:18 +09:00
baseband.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
bssdb.c
staging: vt6656: baseband.c: Remove commented code
2011-11-30 19:28:18 +09:00
bssdb.h
Staging: vt6656: Remove PUINT from ttype.h
2010-08-02 18:16:27 -07:00
card.c
staging: vt6656: card.c: Change return of CARDbAddBasicRate to void
2011-11-30 19:28:19 +09:00
card.h
staging: vt6656: card.c: Change return of CARDbAddBasicRate to void
2011-11-30 19:28:19 +09:00
channel.c
staging: vt6656: removed dummy errors like extra spaces
2010-09-16 12:37:35 -07:00
channel.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
control.c
staging: vt6656: removed NTSTATUS definition
2010-08-02 18:19:04 -07:00
control.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
country.h
datarate.c
staging: vt6656: removed '#if 1'/'#if 0' definitions
2010-07-22 11:42:00 -07:00
datarate.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
desc.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
device_cfg.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
device.h
vt6656: Use request_firmware() to load firmware
2011-01-21 12:19:11 -08:00
dpc.c
staging: vt6656: use %pM for printing MACs
2011-08-23 14:36:18 -07:00
dpc.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
firmware.c
staging: vt6656: Remove NULL check before kfree
2011-03-14 11:57:37 -07:00
firmware.h
hostap.c
staging: vt6656: Remove NULL check before kfree
2011-03-14 11:57:37 -07:00
hostap.h
int.c
staging: vt6656: removed NTSTATUS definition
2010-08-02 18:19:04 -07:00
int.h
staging: vt6656: removed NTSTATUS definition
2010-08-02 18:19:04 -07:00
iocmd.h
Staging: vt665x: remove unused DEF definition
2010-09-16 13:02:36 -07:00
ioctl.c
staging: vt6656: integer overflows in private_ioctl()
2011-11-30 19:29:40 +09:00
ioctl.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
iowpa.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
iwctl.c
staging:vt6656: iwctl.c: Removed unneeded function
2011-11-30 19:25:50 +09:00
iwctl.h
staging:vt6656: iwctl.c: Removed unneeded function
2011-11-30 19:25:50 +09:00
Kconfig
Staging: vt665?: prevent modules from being built into the kernel.
2011-04-04 21:33:26 -07:00
key.c
staging: vt6656: resolved checkpatch finding
2010-08-31 11:35:06 -07:00
key.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
mac.c
staging: vt6656: Fixed indentation with spaces
2010-09-16 12:37:35 -07:00
mac.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
main_usb.c
staging: vt6656: main_usb.c: Use kzalloc instead kmalloc
2011-11-30 19:28:18 +09:00
Makefile
Staging: vt6656: Makefile: cleaned up Makefile cflag lines
2010-10-05 11:56:38 -07:00
mib.c
staging: vt6656: removed NTSTATUS definition
2010-08-02 18:19:04 -07:00
mib.h
staging: vt6656: removed NTSTATUS definition
2010-08-02 18:19:04 -07:00
michael.c
Staging: vt6656: code cleanup, fixed 'for' statements
2010-06-18 10:34:59 -07:00
michael.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
power.c
Staging: vt6656: Clean up switching to power saving mode.
2011-03-02 15:52:30 -05:00
power.h
Staging: vt665*: fix typos concerning "management"
2010-06-18 10:42:07 -07:00
rc4.c
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
rc4.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
rf.c
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
rf.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
rndis.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
rxtx.c
staging: Remove unnecessary semicolons when if (foo) {...};
2011-04-25 16:58:34 -07:00
rxtx.h
staging: vt6656: removed NTSTATUS definition
2010-08-02 18:19:04 -07:00
srom.h
tcrc.c
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
tcrc.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
tether.c
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
tether.h
staging: vt6656: removed custom definitions of Ethernet packet types
2010-08-31 11:31:25 -07:00
tkip.c
staging: vt6656 resolved parenthesis not spaces
2010-11-09 15:55:54 -08:00
tkip.h
tmacro.h
TODO
ttype.h
Staging: vt6656: Remove PUINT from ttype.h
2010-08-02 18:16:27 -07:00
upc.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
usbpipe.c
staging: vt6656: removed macro to test bits
2010-08-31 11:31:26 -07:00
usbpipe.h
staging: vt6656: removed NTSTATUS definition
2010-08-02 18:19:04 -07:00
vntconfiguration.dat
wcmd.c
staging: Remove unnecessary semicolons when if (foo) {...};
2011-04-25 16:58:34 -07:00
wcmd.h
staging: vt6656: removed TxInSleep definition
2010-07-08 13:01:05 -07:00
wctl.c
staging: vt6656: replace IS_ETH_ADDRESS_EQUAL with compare_ether_addr
2010-06-24 14:15:07 -07:00
wctl.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00
wmgr.c
staging: vt6656: use %pM for printing MACs
2011-08-23 14:36:18 -07:00
wmgr.h
Fix common misspellings
2011-03-31 11:26:23 -03:00
wpa2.c
drivers/staging: Remove unnecessary semicolons
2010-11-16 12:06:47 -08:00
wpa2.h
Staging: vt6656: code cleanup, resolved checkpatch findings in headers
2010-06-18 10:35:33 -07:00
wpa.c
staging: vt6656: removed extra spaces
2010-08-31 11:35:05 -07:00
wpa.h
wpactl.c
Staging: vt6656: potential memory corruption
2011-09-29 17:34:50 -07:00
wpactl.h
Staging: vt6656: removed custom UCHAR/USHORT/UINT/ULONG/ULONGLONG typedefs
2010-05-18 14:51:08 -07:00