Gitiles
Code Review Sign In
gerrit.devboardsforandroid.linaro.org / platform / external / u-boot / bdbf7a05e26f3c5fd437c99e2755ffde186ddc80
commitbdbf7a05e26f3c5fd437c99e2755ffde186ddc80[log] [tgz]
authorAndrea zi0Black Cappa <zi0Black@protonmail.com>Wed May 18 16:30:08 2022 +0000
committerTom Rini <trini@konsulko.com>Thu May 26 10:32:06 2022 -0400
treeed0772cd40b66157b9c6a007d995b707f3941ef1
parent9e892ac27670e094ce4bade5a13b4d0e3a7c4da3 [diff]
net: nfs: Fix CVE-2022-30767 (old CVE-2019-14196)

This patch mitigates the vulnerability identified via CVE-2019-14196.

The previous patch was bypassed/ineffective, and now the vulnerability
is identified via CVE-2022-30767. The patch removes the sanity check
introduced to mitigate CVE-2019-14196 since it's ineffective.
filefh3_length is changed to unsigned type integer, preventing negative
numbers from being used during comparison with positive values during
size sanity checks.

Signed-off-by: Andrea zi0Black Cappa <zi0Black@protonmail.com>
1 file changed
tree: ed0772cd40b66157b9c6a007d995b707f3941ef1
  1. .github/
  2. api/
  3. arch/
  4. board/
  5. boot/
  6. cmd/
  7. common/
  8. configs/
  9. disk/
  10. doc/
  11. drivers/
  12. dts/
  13. env/
  14. examples/
  15. fs/
  16. include/
  17. lib/
  18. Licenses/
  19. net/
  20. post/
  21. scripts/
  22. test/
  23. tools/
  24. .azure-pipelines.yml
  25. .checkpatch.conf
  26. .get_maintainer.conf
  27. .gitattributes
  28. .gitignore
  29. .gitlab-ci.yml
  30. .mailmap
  31. .readthedocs.yml
  32. config.mk
  33. Kbuild
  34. Kconfig
  35. MAINTAINERS
  36. Makefile
  37. README