commit | ffdeb8b8a0286bf7e27f74bec4ac0e17443f0c40 | [log] [tgz] |
---|---|---|
author | Mark Salyzyn <salyzyn@google.com> | Tue Nov 10 15:56:41 2015 -0800 |
committer | Mark Salyzyn <salyzyn@google.com> | Fri Nov 13 07:58:05 2015 -0800 |
tree | 2932ff422b4baa8b3c08de21afa9bc117407ab3e | |
parent | d12a083d7dd0755987f394f2eb48d14a1e7742e1 [diff] |
logd: klogd: parse error Resolve three areas missing taglen checking. Add some additional limit-checking paranoia. Problem started when p was allowed to go beyond the size of the incoming buffer in some blind p = cp + 1 fragments, placed the check for that after them all before harm could be done, rather than in each location. Bug: 25620123 Change-Id: Ib5687fd30ef0cd3ba3bc0df310b436ad675ccabc