nfc: pn533: prevent potential memory corruption (db574a60) · Commits · Clea OS / bsp / nxp / linux-seco-imx

Commit db574a60 authored 3 years ago by Dan Carpenter Committed by Greg Kroah-Hartman 3 years ago

nfc: pn533: prevent potential memory corruption


[ Upstream commit ca4d4c34 ]

If the "type_a->nfcid_len" is too large then it would lead to memory
corruption in pn533_target_found_type_a() when we do:

	memcpy(nfc_tgt->nfcid1, tgt_type_a->nfcid_data, nfc_tgt->nfcid1_len);

Fixes: c3b1e1e8 ("NFC: Export NFCID1 from pn533")
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Sasha Levin <sashal@kernel.org>

parent a16f0218

No related branches found

No related tags found

Hide whitespace changes

Inline Side-by-side

Showing with 3 additions and 0 deletions

Please register or to comment