On Sun, 2020-05-03 at 14:52 +0000, Ajay.Kathat@xxxxxxxxxxxxx wrote: > On 03/05/20 1:21 pm, Oscar Carter wrote: > > EXTERNAL EMAIL: Do not click links or open attachments unless you know the content is safe > > > > Increase by one the size of wid_list array as index variable can reach a > > value of 5. If this happens, an out-of-bounds access is performed. > > > > Addresses-Coverity-ID: 1451981 ("Out-of-bounds access") > > Fixes: f5a3cb90b802d ("staging: wilc1000: add passive scan support") > > Signed-off-by: Oscar Carter <oscar.carter@xxxxxxx> [] > > diff --git a/drivers/staging/wilc1000/hif.c b/drivers/staging/wilc1000/hif.c [] > > @@ -151,7 +151,7 @@ int wilc_scan(struct wilc_vif *vif, u8 scan_source, u8 scan_type, > > void *user_arg, struct cfg80211_scan_request *request) > > { > > int result = 0; > > - struct wid wid_list[5]; > > + struct wid wid_list[6]; This looks like it should be using a #define instead of a hard-coded number. > > u32 index = 0; > > u32 i, scan_timeout; > > u8 *buffer; > > -- > > 2.20.1 _______________________________________________ devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxx http://driverdev.linuxdriverproject.org/mailman/listinfo/driverdev-devel