u-boot

mirror of https://github.com/u-boot/u-boot.git synced 2025-04-17 02:15:02 +00:00

History

Richard Weinberger 35f75d2a46 ext4: Fix integer overflow in ext4fs_read_symlink() While zalloc() takes a size_t type, adding 1 to the le32 variable will overflow. A carefully crafted ext4 filesystem can exhibit an inode size of 0xffffffff and as consequence zalloc() will do a zero allocation. Later in the function the inode size is again used for copying data. So an attacker can overwrite memory. Avoid the overflow by using the __builtin_add_overflow() helper. Signed-off-by: Richard Weinberger <richard@nod.at>		2024-08-15 16:14:36 -06:00
..
btrfs	fs: Remove duplicate newlines	2024-07-15 12:12:17 -06:00
cbfs	Restore patch series "arm: dts: am62-beagleplay: Fix Beagleplay Ethernet"	2024-05-20 13:35:03 -06:00
cramfs	Restore patch series "arm: dts: am62-beagleplay: Fix Beagleplay Ethernet"	2024-05-20 13:35:03 -06:00
erofs	fs/erofs: fix an overflow issue of unmapped extents	2024-06-14 12:59:06 -06:00
ext4	ext4: Fix integer overflow in ext4fs_read_symlink()	2024-08-15 16:14:36 -06:00
fat	Restore patch series "arm: dts: am62-beagleplay: Fix Beagleplay Ethernet"	2024-05-20 13:35:03 -06:00
jffs2	fs: Remove duplicate newlines	2024-07-15 12:12:17 -06:00
sandbox	sandbox: Return error code from read/write/seek	2024-08-09 16:03:19 -06:00
squashfs	squashfs: Fix heap corruption in sqfs_search_dir()	2024-08-15 16:14:36 -06:00
ubifs	fs: Remove duplicate newlines	2024-07-15 12:12:17 -06:00
yaffs2	fs: Remove duplicate newlines	2024-07-15 12:12:17 -06:00
zfs	fs: Remove duplicate newlines	2024-07-15 12:12:17 -06:00
fs.c	fs: relax ext4_write_file() dependency	2024-06-07 16:20:27 -06:00
fs_internal.c	Restore patch series "arm: dts: am62-beagleplay: Fix Beagleplay Ethernet"	2024-05-20 13:35:03 -06:00
Kconfig	fs: drop reiserfs	2024-03-04 10:25:47 -05:00
Makefile	fs: drop reiserfs	2024-03-04 10:25:47 -05:00
semihostingfs.c	Restore patch series "arm: dts: am62-beagleplay: Fix Beagleplay Ethernet"	2024-05-20 13:35:03 -06:00