Commit c835a79c authored by Piyush Dhyani's avatar Piyush Dhyani Committed by Shrirang Bagul
Browse files

msm: ipa3: Fix to prevent Integer Overflow 

BugLink: https://bugs.launchpad.net/bugs/1945470



The value of `req->filter_spec_ex2_list_len`
is user input via ioctl and it's type is uint32,
so an integer overflow may occur. Which can result
in out of bound access in the following loop. Now
add changes to prevent Integer overflow.

Change-Id: Ia29b9ddc674e5dd3d5baf6623cf0a464c156d8f7
Signed-off-by: default avatarPiyush Dhyani <pdhyani@codeaurora.org>
(cherry picked from commit 9673f1ea6032b6c55714a89af697af21dc79e923)
Signed-off-by: default avatarShrirang Bagul <shrirang.bagul@canonical.com>
parent 3c52d722
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment