mirrors/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-10-07 00:59:06 +00:00
Code Issues Releases Wiki Activity
linux-stable/net/nfc/nci
History
Lin Ma 1ac0d736c8 nfc: nci: fix the UAF of rf_conn_info object 
commit 1b1499a817 upstream.

The nci_core_conn_close_rsp_packet() function will release the conn_info
with given conn_id. However, it needs to set the rf_conn_info to NULL to
prevent other routines like nci_rf_intf_activated_ntf_packet() to trigger
the UAF.

Reviewed-by: Krzysztof Kozlowski <krzysztof.kozlowski@canonical.com>
Signed-off-by: Lin Ma <linma@zju.edu.cn>
Signed-off-by: Krzysztof Kozlowski <krzysztof.kozlowski@canonical.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2021-10-27 09:53:14 +02:00
..
core.c NFC: nci: fix memory leak in nci_allocate_device 2021-06-03 08:38:02 +02:00
data.c nfc: fix potential illegal memory access 2019-07-28 08:29:25 +02:00
hci.c NFC: nci: fix memory leak in nci_allocate_device 2021-06-03 08:38:02 +02:00
Kconfig
lib.c
Makefile License cleanup: add SPDX GPL-2.0 license identifier to files with no license 2017-11-02 11:10:55 +01:00
ntf.c
rsp.c nfc: nci: fix the UAF of rf_conn_info object 2021-10-27 09:53:14 +02:00
spi.c
uart.c net: nfc: nci: fix a possible sleep-in-atomic-context bug in nci_uart_tty_receive() 2019-12-31 16:34:38 +01:00