projects / platform / upstream / bluez.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2cf7786) | patch
btmon: fix multiple segfaults
authorMatias Karhumaa <matias.karhumaa@gmail.com>
Tue, 16 Oct 2018 20:22:16 +0000 (23:22 +0300)
committerhimanshu <h.himanshu@samsung.com>
Tue, 14 Jan 2020 08:53:35 +0000 (14:23 +0530)
commit473994979c2266d341947e69119ad76044974106
tree7e1220a12d405d7b84615c24d96afe65f4a29f84tree | snapshot
parent2cf7786c6d7778c56c6b6f187abf7a416036f22bcommit | diff
btmon: fix multiple segfaults

Fix multiple segfaults caused by buffer over-read in packet_hci_command,
packet_hci_event and packet_hci_acldata. Fix is to check that index is
not bigger than MAX_INDEX before accessing index_list.

Crashes were found by fuzzing btmon with AFL.

Change-Id: Iaba0be9da71154eaeff3be86e8afa5eeb74dd354
Signed-off-by: himanshu <h.himanshu@samsung.com>
monitor/packet.c diff | blob | history
Domain: Network & Connectivity / Bluetooth;