Gitiles
Code Review Sign In
gerrit.devboardsforandroid.linaro.org / platform / external / u-boot / 878269dbe74229005dd7f27aca66c554e31dad8e
commit878269dbe74229005dd7f27aca66c554e31dad8e[log] [tgz]
authorPaul Emge <paulemge@forallsecure.com>Mon Jul 08 16:37:05 2019 -0700
committerTom Rini <trini@konsulko.com>Thu Jul 18 11:31:29 2019 -0400
tree1cfc04f11647a0a0a5012195205acc33066b8830
parent6e5a79de658cb1c8012c86e0837379aa6eabd024 [diff]
CVE-2019-13104: ext4: check for underflow in ext4fs_read_file

in ext4fs_read_file, it is possible for a broken/malicious file
system to cause a memcpy of a negative number of bytes, which
overflows all memory. This patch fixes the issue by checking for
a negative length.

Signed-off-by: Paul Emge <paulemge@forallsecure.com>
1 file changed
tree: 1cfc04f11647a0a0a5012195205acc33066b8830
  1. .github/
  2. api/
  3. arch/
  4. board/
  5. cmd/
  6. common/
  7. configs/
  8. disk/
  9. doc/
  10. Documentation/
  11. drivers/
  12. dts/
  13. env/
  14. examples/
  15. fs/
  16. include/
  17. lib/
  18. Licenses/
  19. net/
  20. post/
  21. scripts/
  22. test/
  23. tools/
  24. .checkpatch.conf
  25. .gitignore
  26. .mailmap
  27. .travis.yml
  28. config.mk
  29. Kbuild
  30. Kconfig
  31. MAINTAINERS
  32. Makefile
  33. README