Gitiles
Code Review Sign In
gerrit.nordix.org / codeaurora / quic / qsdk / oss / boot / u-boot-2016 / 6f8e96927c48c7ef91190cfe317d4977e97eea0e
commit6f8e96927c48c7ef91190cfe317d4977e97eea0e[log] [tgz]
authorPaul Emge <paulemge@forallsecure.com>Tue Jan 14 20:43:52 2020 +0530
committerKarthick Shanmugham <kartshan@codeaurora.org>Tue Jan 14 20:46:06 2020 +0530
treec9d0f38fffe7230c9bfcfc674c269a583e716108
parente621657025f4d05b88b6f8bebae567a268e0b90a [diff]
CVE-2019-13106: ext4: fix out-of-bounds memset

In ext4fs_read_file in ext4fs.c, a memset can overwrite the bounds of
the destination memory region. This patch adds a check to disallow
this.

Change-Id: I5138ca873009117194407d82af004a637317c1d0
Signed-off-by: Paul Emge <paulemge@forallsecure.com>
Signed-off-by: Karthick Shanmugham <kartshan@codeaurora.org>
1 file changed
tree: c9d0f38fffe7230c9bfcfc674c269a583e716108
  1. api/
  2. arch/
  3. board/
  4. common/
  5. configs/
  6. disk/
  7. doc/
  8. drivers/
  9. dts/
  10. examples/
  11. fs/
  12. include/
  13. lib/
  14. Licenses/
  15. net/
  16. post/
  17. scripts/
  18. test/
  19. tools/
  20. .checkpatch.conf
  21. .gitignore
  22. .mailmap
  23. .travis.yml
  24. config.mk
  25. Kbuild
  26. Kconfig
  27. MAINTAINERS
  28. MAKEALL
  29. Makefile
  30. README
  31. snapshot.commit