DivestOS/Patches/Linux_CVEs/CVE-2016-6682/ANY/0.patch

From f3a55611dc1c0363374ad92eb52b6ee09bf5ff49 Mon Sep 17 00:00:00 2001
From: vivek mehta <mvivek@codeaurora.org>
Date: Thu, 11 Aug 2016 13:27:32 -0700
Subject: [PATCH] misc: qcom: qdsp6v2: Add missing initialization

Use variables in driver context after proper initialization

Bug: 30152182 30152501
Change-Id: I3e59e27534b8e1088d74b42c72e0075d2fe910e6
Signed-off-by: Haynes Mathew George <hgeorge@codeaurora.org>
Signed-off-by: vivek mehta <mvivek@codeaurora.org>
---
 drivers/misc/qcom/qdsp6v2/audio_utils.c     | 3 ++-
 drivers/misc/qcom/qdsp6v2/audio_utils_aio.c | 1 +
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/drivers/misc/qcom/qdsp6v2/audio_utils.c b/drivers/misc/qcom/qdsp6v2/audio_utils.c
index 2206a3461cc0d..ac56464683600 100644
--- a/drivers/misc/qcom/qdsp6v2/audio_utils.c
+++ b/drivers/misc/qcom/qdsp6v2/audio_utils.c
@@ -1,4 +1,4 @@
-/* Copyright (c) 2010-2014, The Linux Foundation. All rights reserved.
+/* Copyright (c) 2010-2014, 2016, The Linux Foundation. All rights reserved.
  *
  * This program is free software; you can redistribute it and/or modify
  * it under the terms of the GNU General Public License version 2 and
@@ -593,6 +593,7 @@ long audio_in_compat_ioctl(struct file *file,
 	}
 	case AUDIO_GET_CONFIG_32: {
 		struct msm_audio_config32 cfg_32;
+		memset(&cfg_32, 0, sizeof(cfg_32));
 		cfg_32.buffer_size = audio->pcm_cfg.buffer_size;
 		cfg_32.buffer_count = audio->pcm_cfg.buffer_count;
 		cfg_32.channel_count = audio->pcm_cfg.channel_count;
diff --git a/drivers/misc/qcom/qdsp6v2/audio_utils_aio.c b/drivers/misc/qcom/qdsp6v2/audio_utils_aio.c
index 11d890d443007..d444742c603cb 100644
--- a/drivers/misc/qcom/qdsp6v2/audio_utils_aio.c
+++ b/drivers/misc/qcom/qdsp6v2/audio_utils_aio.c
@@ -1877,6 +1877,7 @@ static long audio_aio_compat_ioctl(struct file *file, unsigned int cmd,
 	case AUDIO_GET_CONFIG_32: {
 		struct msm_audio_config32 cfg_32;
 		mutex_lock(&audio->lock);
+		memset(&cfg_32, 0, sizeof(cfg_32));
 		cfg_32.buffer_size = audio->pcm_cfg.buffer_size;
 		cfg_32.buffer_count = audio->pcm_cfg.buffer_count;
 		cfg_32.channel_count = audio->pcm_cfg.channel_count;
Add patches for many Linux CVEs, and overhaul script paths 2017-10-29 01:48:53 -04:00			`From f3a55611dc1c0363374ad92eb52b6ee09bf5ff49 Mon Sep 17 00:00:00 2001`
			`From: vivek mehta <mvivek@codeaurora.org>`
			`Date: Thu, 11 Aug 2016 13:27:32 -0700`
			`Subject: [PATCH] misc: qcom: qdsp6v2: Add missing initialization`

			`Use variables in driver context after proper initialization`

			`Bug: 30152182 30152501`
			`Change-Id: I3e59e27534b8e1088d74b42c72e0075d2fe910e6`
			`Signed-off-by: Haynes Mathew George <hgeorge@codeaurora.org>`
			`Signed-off-by: vivek mehta <mvivek@codeaurora.org>`
			`---`
			`drivers/misc/qcom/qdsp6v2/audio_utils.c \| 3 ++-`
			`drivers/misc/qcom/qdsp6v2/audio_utils_aio.c \| 1 +`
			`2 files changed, 3 insertions(+), 1 deletion(-)`

			`diff --git a/drivers/misc/qcom/qdsp6v2/audio_utils.c b/drivers/misc/qcom/qdsp6v2/audio_utils.c`
			`index 2206a3461cc0d..ac56464683600 100644`
			`--- a/drivers/misc/qcom/qdsp6v2/audio_utils.c`
			`+++ b/drivers/misc/qcom/qdsp6v2/audio_utils.c`
			`@@ -1,4 +1,4 @@`
			`-/* Copyright (c) 2010-2014, The Linux Foundation. All rights reserved.`
			`+/* Copyright (c) 2010-2014, 2016, The Linux Foundation. All rights reserved.`
			`*`
			`* This program is free software; you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License version 2 and`
			`@@ -593,6 +593,7 @@ long audio_in_compat_ioctl(struct file *file,`
			`}`
			`case AUDIO_GET_CONFIG_32: {`
			`struct msm_audio_config32 cfg_32;`
			`+ memset(&cfg_32, 0, sizeof(cfg_32));`
			`cfg_32.buffer_size = audio->pcm_cfg.buffer_size;`
			`cfg_32.buffer_count = audio->pcm_cfg.buffer_count;`
			`cfg_32.channel_count = audio->pcm_cfg.channel_count;`
			`diff --git a/drivers/misc/qcom/qdsp6v2/audio_utils_aio.c b/drivers/misc/qcom/qdsp6v2/audio_utils_aio.c`
			`index 11d890d443007..d444742c603cb 100644`
			`--- a/drivers/misc/qcom/qdsp6v2/audio_utils_aio.c`
			`+++ b/drivers/misc/qcom/qdsp6v2/audio_utils_aio.c`
			`@@ -1877,6 +1877,7 @@ static long audio_aio_compat_ioctl(struct file *file, unsigned int cmd,`
			`case AUDIO_GET_CONFIG_32: {`
			`struct msm_audio_config32 cfg_32;`
			`mutex_lock(&audio->lock);`
			`+ memset(&cfg_32, 0, sizeof(cfg_32));`
			`cfg_32.buffer_size = audio->pcm_cfg.buffer_size;`
			`cfg_32.buffer_count = audio->pcm_cfg.buffer_count;`
			`cfg_32.channel_count = audio->pcm_cfg.channel_count;`