Revision - 22d6576 - HID: u2fzero: ignore incomplete packets without data

Revision 22d65765f211cc83186fd8b87521159f354c0da9 authored by Andrej Shadura on 16 September 2021, 16:33:11 UTC, committed by Jiri Kosina on 22 September 2021, 07:31:18 UTC

HID: u2fzero: ignore incomplete packets without data

Since the actual_length calculation is performed unsigned, packets
shorter than 7 bytes (e.g. packets without data or otherwise truncated)
or non-received packets ("zero" bytes) can cause buffer overflow.

Link: https://bugzilla.kernel.org/show_bug.cgi?id=214437
Fixes: 42337b9d4d958("HID: add driver for U2F Zero built-in LED and RNG")
Signed-off-by: Andrej Shadura <andrew.shadura@collabora.co.uk>
Signed-off-by: Jiri Kosina <jkosina@suse.cz>

1 parent d46ef75

Files
Changes

Permalinks

File	Mode	Size
accounting
arch
bootconfig
bpf
build
cgroup
debugging
edid
firewire
firmware
gpio
hv
iio
include
io_uring
kvm
laptop
leds
lib
memory-model
objtool
pci
pcmcia
perf
power
rcu
scripts
spi
testing
thermal
time
tracing
usb
virtio
vm
wmi
Makefile	-rw-r--r--	6.2 KB

Showing with 0 additions and 0 deletions (0 / 0 diffs computed)

Computing file changes ...