commit | aedec9226809ae9d1972f8f8079fc70206ee7a88 | [log] [tgz] |
---|---|---|
author | John W. Linville <linville@tuxdriver.com> | Mon May 04 11:18:57 2009 -0400 |
committer | John W. Linville <linville@tuxdriver.com> | Mon May 11 15:07:01 2009 -0400 |
tree | 21e003e44b23d5b780e3da8431098e955851948a | |
parent | e1cc1c578055d20d36e084e324001fb5e0355a71 [diff] |
airo: airo_get_encode{,ext} potential buffer overflow Feeding the return code of get_wep_key directly to the length parameter of memcpy is a bad idea since it could be -1... Reported-by: Eugene Teo <eugeneteo@kernel.sg> Signed-off-by: John W. Linville <linville@tuxdriver.com>