File hcidump-fixed-hci-frame-dump-stack-buffer-overflow.patch of Package bluez.25858
From 01146fff6e66742b5e256cf7cbae3e0d7f30c530 Mon Sep 17 00:00:00 2001
From: "Cho, Yu-Chen" <acho@suse.com>
Date: Wed, 31 Oct 2018 16:15:07 +0800
Subject: [PATCH] hcidump:fixed hci frame dump stack-buffer-overflow
hci_dump() didn't check the length of frame, and it would be
a stack-buffer-overflow error.
---
tools/parser/hci.c | 3 +++
1 file changed, 3 insertions(+)
Index: bluez-5.62/tools/parser/hci.c
===================================================================
--- bluez-5.62.orig/tools/parser/hci.c
+++ bluez-5.62/tools/parser/hci.c
@@ -4100,6 +4100,9 @@ void hci_dump(int level, struct frame *f
if (frm->len == 0)
return;
+ if (frm->len == 0)
+ return;
+
switch (type) {
case HCI_COMMAND_PKT:
command_dump(level, frm);