Re: qtnfmac: fix NULL pointer dereference

From: Kalle Valo
Date: Mon Jun 18 2018 - 04:55:44 EST

Next message: Justin Skists: "Re: [PATCH] staging: speakup: refactor synths array to use a list"
Previous message: Greg Kroah-Hartman: "[PATCH 4.14 115/189] RDMA/cma: Do not query GID during QP state transition to RTR"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

"Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx> wrote:

> In case *vif* is NULL at 655: if (!vif), the execution path jumps to
> label out, where *vif* is dereferenced at 679:
>
> if (vif->sta_state == QTNF_STA_CONNECTING)
>
> Fix this by immediately returning when *vif* is NULL instead of
> jumping to label out.
>
> Addresses-Coverity-ID: 1469567 ("Dereference after null check")
> Fixes: 480daa9cb62c ("qtnfmac: fix invalid STA state on EAPOL failure")
> Signed-off-by: Gustavo A. R. Silva <gustavo@xxxxxxxxxxxxxx>
> Reviewed-by: Sergey Matyukevich <sergey.matyukevich.os@xxxxxxxxxxxx>

Patch applied to wireless-drivers.git, thanks.

c1e3f64f8738 qtnfmac: fix NULL pointer dereference

--
https://patchwork.kernel.org/patch/10443507/

https://wireless.wiki.kernel.org/en/developers/documentation/submittingpatches

Next message: Justin Skists: "Re: [PATCH] staging: speakup: refactor synths array to use a list"
Previous message: Greg Kroah-Hartman: "[PATCH 4.14 115/189] RDMA/cma: Do not query GID during QP state transition to RTR"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]