]> Git Repo - linux.git/commit
projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9c6256a) | patch
USB: validate wMaxPacketValue entries in endpoint descriptors
authorAlan Stern <[email protected]>
Mon, 1 Aug 2016 19:25:56 +0000 (15:25 -0400)
committerGreg Kroah-Hartman <[email protected]>
Tue, 9 Aug 2016 14:14:18 +0000 (16:14 +0200)
commitaed9d65ac3278d4febd8665bd7db59ef53e825fe
treef9a3decc5f7b42dc3b12e34b3fac1c20c3cbe713tree | snapshot
parent9c6256a5e707a9eb8b91962b550050b13aa75334commit | diff
USB: validate wMaxPacketValue entries in endpoint descriptors

Erroneous or malicious endpoint descriptors may have non-zero bits in
reserved positions, or out-of-bounds values.  This patch helps prevent
these from causing problems by bounds-checking the wMaxPacketValue
entries in endpoint descriptors and capping the values at the maximum
allowed.

This issue was first discovered and tests were conducted by Jake Lamberson
<[email protected]>, an intern working for Rosie Hall.

Signed-off-by: Alan Stern <[email protected]>
Reported-by: roswest <[email protected]>
Tested-by: roswest <[email protected]>
CC: <[email protected]>
Signed-off-by: Greg Kroah-Hartman <[email protected]>
drivers/usb/core/config.c diff | blob | blame | history
Empty description
This page took 0.057076 seconds and 4 git commands to generate.