Skip to content
Snippets Groups Projects
Commit d1047690 authored by Hui Peng's avatar Hui Peng
Browse files

Fix an OOB access bug in BtaAvCo::GetNextSourceDataPacket 

If the length of the packet is less than 4 or the offset is 0
OOB access is triggered.

Bug: 259939364
Test: manual
Ignore-AOSP-First: security
Merged-In: I11a3ebf20c45e9e69a4008a7d7271470e6235fe1
Change-Id: I11a3ebf20c45e9e69a4008a7d7271470e6235fe1
parent 45e8d2dc
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment