projects / platform / upstream / bluez.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 97c5d79) | patch
sdp: Fix not checking if cstate length
authorLuiz Augusto von Dentz <luiz.von.dentz@intel.com>
Fri, 28 Sep 2018 12:04:42 +0000 (15:04 +0300)
committerhimanshu <h.himanshu@samsung.com>
Tue, 14 Jan 2020 08:53:35 +0000 (14:23 +0530)
commit5a1540ace9f169ac2e42a066edb3b319a142acbb
tree26fa3d8a73499d25dc96c80b25381c34a12da7fetree | snapshot
parent97c5d7942bf351d87b688dbfb03708da2576d828commit | diff
sdp: Fix not checking if cstate length

cstate length should be smaller than cached length otherwise the
request shall be considered invalid as the data is not within the
cached buffer.

An independent security researcher, Julian Rauchberger, has reported
this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure
program.

Change-Id: I16873b4ca1eda39c28d6737a66db08a6206c6bfb
Signed-off-by: himanshu <h.himanshu@samsung.com>
src/sdpd-request.c diff | blob | history
Domain: Network & Connectivity / Bluetooth;