qiurui
/
Ubuntu-focal-kernel
mirror of https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/focal
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Ubuntu-focal-kernel/net/bluetooth
History
Griffin Kroah-Hartman 0c45a14747 Bluetooth: MGMT: Add error handling to pair_device() 
BugLink: https://bugs.launchpad.net/bugs/2080595

commit 538fd3921afac97158d4177139a0ad39f056dbb2 upstream.

hci_conn_params_add() never checks for a NULL value and could lead to a NULL
pointer dereference causing a crash.

Fixed by adding error handling in the function.

Cc: Stable <stable@kernel.org>
Fixes: 5157b8a503 ("Bluetooth: Fix initializing conn_params in scan phase")
Signed-off-by: Griffin Kroah-Hartman <griffin@kroah.com>
Reported-by: Yiwei Zhang <zhan4630@purdue.edu>
Signed-off-by: Luiz Augusto von Dentz <luiz.von.dentz@intel.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Koichiro Den <koichiro.den@canonical.com>
Signed-off-by: Stefan Bader <stefan.bader@canonical.com>
 		2024-09-27 10:50:26 +02:00
..
bnep Bluetooth: bnep: Fix out-of-bound access 2024-09-27 10:50:25 +02:00
cmtp Bluetooth: cmtp: fix possible panic when cmtp_init_sockets() fails 2022-03-07 16:35:27 +01:00
hidp Bluetooth: Fix race condition in hidp_session_thread 2023-07-10 17:22:10 +02:00
rfcomm Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security 2024-06-07 15:01:24 +02:00
6lowpan.c Bluetooth: 6LoWPAN: add missing hci_dev_put() in get_l2cap_conn() 2023-02-01 15:21:55 +01:00
Kconfig
Makefile
a2mp.c
a2mp.h
af_bluetooth.c Bluetooth: af_bluetooth: Fix deadlock 2024-07-05 10:51:55 +02:00
amp.c
amp.h
ecdh_helper.c
ecdh_helper.h
hci_conn.c Bluetooth: Fix bogus check for re-auth no supported with non-ssp 2024-02-29 15:23:37 +01:00
hci_core.c Bluetooth: hci_core: Fix LE quote calculation 2024-09-27 10:50:26 +02:00
hci_debugfs.c Bluetooth: Fix TOCTOU in HCI debugfs implementation 2024-06-07 15:01:38 +02:00
hci_debugfs.h
hci_event.c Bluetooth: hci_event: set the conn encrypted before conn establishes 2024-06-07 15:01:38 +02:00
hci_request.c Bluetooth: Fix memory leak in hci_req_sync_complete() 2024-06-07 15:01:42 +02:00
hci_request.h
hci_sock.c Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name 2024-01-05 14:29:59 +01:00
hci_sysfs.c Bluetooth: Fix double free in hci_conn_cleanup 2024-02-02 14:13:07 +01:00
l2cap_core.c Bluetooth: l2cap: always unlock channel in l2cap_conless_channel() 2024-09-27 10:50:18 +02:00
l2cap_sock.c Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old() 2024-06-07 15:01:46 +02:00
leds.c
leds.h
lib.c
mgmt.c Bluetooth: MGMT: Add error handling to pair_device() 2024-09-27 10:50:26 +02:00
mgmt_util.c
mgmt_util.h
sco.c Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout 2024-07-05 10:51:53 +02:00
selftest.c
selftest.h
smp.c Bluetooth: Fix atomicity violation in {min, max}_key_size_set 2024-08-02 16:16:06 +02:00
smp.h