Phil Turnbull <philipturnbull@xxxxxxxxxx> wrote: > There is no validation of 'offset' which can trigger an out-of-bounds > read when extracting RSN capabilities. > > Signed-off-by: Phil Turnbull <philipturnbull@xxxxxxxxxx> > Tested-by: Ajay Kathat <ajay.kathat@xxxxxxxxxxxxx> > Acked-by: Ajay Kathat <ajay.kathat@xxxxxxxxxxxxx> 4 patches applied to wireless.git, thanks. cd21d99e595e wifi: wilc1000: validate pairwise and authentication suite offsets 051ae669e450 wifi: wilc1000: validate length of IEEE80211_P2P_ATTR_OPER_CHANNEL attribute f9b62f9843c7 wifi: wilc1000: validate length of IEEE80211_P2P_ATTR_CHANNEL_LIST attribute 0cdfa9e6f091 wifi: wilc1000: validate number of channels -- https://patchwork.kernel.org/project/linux-wireless/patch/20221123153543.8568-2-philipturnbull@xxxxxxxxxx/ https://wireless.wiki.kernel.org/en/developers/documentation/submittingpatches
