commit | eb298086153a9502bb0b02a1a26919a482b52535 | [log] [tgz] |
---|---|---|
author | Mark Salyzyn <salyzyn@google.com> | Tue Nov 10 15:56:41 2015 -0800 |
committer | Mark Salyzyn <salyzyn@google.com> | Fri Nov 13 07:58:05 2015 -0800 |
tree | 2932ff422b4baa8b3c08de21afa9bc117407ab3e | |
parent | 5559f1d6e89d1a4a5140328deb9b420f7d540508 [diff] |
logd: klogd: parse error Resolve three areas missing taglen checking. Add some additional limit-checking paranoia. Problem started when p was allowed to go beyond the size of the incoming buffer in some blind p = cp + 1 fragments, placed the check for that after them all before harm could be done, rather than in each location. Bug: 25620123 Change-Id: Ib5687fd30ef0cd3ba3bc0df310b436ad675ccabc