binder: check for overflow when alloc for security context - linux-dev - Linux kernel development work

diff options

author	Todd Kjos <tkjos@android.com>	2019-04-24 12:31:18 -0700
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2019-04-25 21:26:49 +0200
commit	0b0509508beff65c1d50541861bc0d4973487dc5 (patch)
tree	6237e6db6fc0f1355c60e9c9f6c924178219db59 /drivers/virt
parent	misc: genwqe: Fix misuse of %x (diff)
download	linux-dev-0b0509508beff65c1d50541861bc0d4973487dc5.tar.xz linux-dev-0b0509508beff65c1d50541861bc0d4973487dc5.zip

binder: check for overflow when alloc for security context

When allocating space in the target buffer for the security context, make sure the extra_buffers_size doesn't overflow. This can only happen if the given size is invalid, but an overflow can turn it into a valid size. Fail the transaction if an overflow is detected. Signed-off-by: Todd Kjos <tkjos@google.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'drivers/virt')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: