Re: [PATCH v3] staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan

From: Dan Carpenter
Date: Fri Feb 26 2021 - 10:07:23 EST


On Fri, Feb 26, 2021 at 02:51:57PM +0000, Lee Gibson wrote:
> Function _rtl92e_wx_set_scan calls memcpy without checking the length.
> A user could control that length and trigger a buffer overflow.
> Fix by checking the length is within the maximum allowed size.
>
> Reviewed-by: Dan Carpenter <dan.carpenter@xxxxxxxxxx>
> Signed-off-by: Lee Gibson <leegib@xxxxxxxxx>
> ---

Thanks!

regards,
dan carpenter