]> git.dujemihanovic.xyz Git - u-boot.git/commit
CVE-2019-13104: ext4: check for underflow in ext4fs_read_file
authorPaul Emge <paulemge@forallsecure.com>
Mon, 8 Jul 2019 23:37:05 +0000 (16:37 -0700)
committerTom Rini <trini@konsulko.com>
Thu, 18 Jul 2019 15:31:29 +0000 (11:31 -0400)
commit878269dbe74229005dd7f27aca66c554e31dad8e
tree1cfc04f11647a0a0a5012195205acc33066b8830
parent6e5a79de658cb1c8012c86e0837379aa6eabd024
CVE-2019-13104: ext4: check for underflow in ext4fs_read_file

in ext4fs_read_file, it is possible for a broken/malicious file
system to cause a memcpy of a negative number of bytes, which
overflows all memory. This patch fixes the issue by checking for
a negative length.

Signed-off-by: Paul Emge <paulemge@forallsecure.com>
fs/ext4/ext4fs.c