Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 9e72a8d8 authored by huifen wang's avatar huifen wang Committed by Huifen Wang
Browse files

[ALPS05454961] drivers: Security Vulnerability 



Security Vulnerability in TEEI - OOB read in teei_config driver.

MTK-Commit-Id: 6d528b88f5e1ee2e963c483e7cb96d7d9d615099

Change-Id: I2a6a55b3b627a99b85e6dd902f8eab55a1e55d7d
Signed-off-by: default avatarhuifen wang <huifen.wang@mediatek.com>
CR-Id: ALPS05454961
Feature: Microtrust TEEI
parent 4071a525

drivers/tee/teei/300/tz_driver/teei_client_main.c

+5 −0
Original line number Original line Diff line number Diff line
@@ -706,6 +706,11 @@ static long teei_config_ioctl(struct file *file, 
			teei_flags = 1;

			teei_flags = 1;





			TEEI_BOOT_FOOTPRINT("TEEI start to load driver TAs");

			TEEI_BOOT_FOOTPRINT("TEEI start to load driver TAs");

			if (param.uuid_count > MAX_DRV_UUIDS) {

				IMSG_ERROR("TEEI uuid_count is invalid(%u)!\n",

					(unsigned int)(param.uuid_count));

				return -EINVAL;

			}





			teei_ta_flags = param.flag;

			teei_ta_flags = param.flag;

			for (i = 0; i < param.uuid_count; i++) {

			for (i = 0; i < param.uuid_count; i++) {