HAL: Fixed OOB read by assigning each param of Nancapabilities individually am: 608e7e803f

Original change: https://googleplex-android-review.googlesource.com/c/platform/hardware/broadcom/wlan/+/21551539

Change-Id: Icac9e5816771867fca70bf1618cc130c689d30d3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>

1 files changed, 0 insertions, 2 deletions

diff --git a/bcmdhd/wifi_hal/nan.cpp b/bcmdhd/wifi_hal/nan.cpp
index c6a7249..4dd4dd9 100755
--- a/bcmdhd/wifi_hal/nan.cpp
+++ b/bcmdhd/wifi_hal/nan.cpp
@@ -1543,8 +1543,6 @@ class NanDiscEnginePrimitive : public WifiCommand
         } else if (rsp_data.response_type == NAN_RESPONSE_SUBSCRIBE) {
             rsp_data.body.subscribe_response.subscribe_id = mInstId;
         } else if (rsp_data.response_type == NAN_GET_CAPABILITIES) {
-            memcpy((void *)&rsp_data.body.nan_capabilities, (void *)&rsp_vndr_data->capabilities,
-                    min(len, sizeof(rsp_data.body.nan_capabilities)));
             /* avoid memcpy to keep backward compatibility */
             NanCapabilities *desc = &rsp_data.body.nan_capabilities;
             NanCapabilities *src = &rsp_vndr_data->capabilities;