CVE-2016-2502-drivers/usb/gadget/f_serial.c in the Qualcomm USB driver in Android. Buffer Overflow Vulnerability reported by #plzdonthackme, Soctt.
2016-08-15 13:43
525 查看
CVE-2016-2502-drivers/usb/gadget/f_serial.c in the Qualcomm USB driver in Android.
Buffer Overflow Vulnerability reported by #plzdonthackme, Soctt.
Buffer Overflow Vulnerability reported by #plzdonthackme, Soctt.
struct ioctl_smd_write_arg_type { char *buf; unsigned int size; }; #define GSERIAL_BUF_LEN 256 char smd_write_buf[GSERIAL_BUF_LEN]; struct ioctl_smd_write_arg_type smd_write_arg; ... case GSERIAL_SMD_WRITE: if (copy_from_user(&smd_write_arg, argp, sizeof(smd_write_arg))) { ... //Patch //if (smd_write_arg.size > GSERIAL_BUF_LEN ) // pr_err("%s: dont trigger the BoD vuln.", __func__); if (copy_from_user(smd_write_buf, smd_write_arg.buf, smd_write_arg.size)) // Bof vuln.
相关文章推荐
- Stack-based buffer overflow in acdb audio driver (CVE-2013-2597)
- Stack-based buffer overflow in acdb audio driver (CVE-2013-2597)
- Stack-based buffer overflow in acdb audio driver (CVE-2013-2597)
- Stack-based buffer overflow in acdb audio driver (CVE-2013-2597)
- 转载:Setting Up ADB/USB Drivers for Android Devices in Linux (Ubuntu)
- A New Vulnerability in the Android Framework: Fragment Injection
- the two buffer queues maintain by drivers supporting v4l2
- Error : The specified component was not reported by the VSS writer (Error 517) in Windows Server 2012 Backup
- ERROR: The Nouveau kernel driver is currently in use by your system.
- Eclipse中Android项目运行时出现Unable to execute dex: java.nio.BufferOverflowException. Check the Eclipse log
- Android: setPreviewCallbackWithBuffer, buffer in the queue and no callbacks
- Android 报错:Conversion to Dalvik format failed: Unable to execute dex: java.nio.BufferOverflowException. Check the Eclipse log for stack trace.
- Eclipse中Android项目运行时出现Unable to execute dex: java.nio.BufferOverflowException. Check the Eclipse l
- Android: Downloading the Google USB Driver
- Android项目运行时出现错误: Unable to execute dex: java.nio.BufferOverflowException. Check the Eclipse log for
- The USB Webcam driver in Windows CE
- Android - 警告:it is always overridden by the value specified in the Gradle build script
- Android 异常 Unable to execute dex: java.nio.BufferOverflowException. Check the Eclipse log for stack