Whamcloud - gitweb
git://git.whamcloud.com / tools / e2fsprogs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6e1098f) | patch
libsupport: add checks to prevent buffer overrun bugs in quota code
authorTheodore Ts'o <tytso@mit.edu>
Sun, 1 Sep 2019 04:59:16 +0000 (00:59 -0400)
committerTheodore Ts'o <tytso@mit.edu>
Wed, 25 Sep 2019 17:32:19 +0000 (13:32 -0400)
commit09fe1fd2a1f9efc3091b4fc61f1876d0785956a8
tree06118f0262a2ec94ca94b968771725942e31bf2ctree | snapshot
parent6e1098f9965d4df25d813a85daa7a73419d7e360commit | diff
libsupport: add checks to prevent buffer overrun bugs in quota code

A maliciously corrupted file systems can trigger buffer overruns in
the quota code used by e2fsck.  To fix this, add sanity checks to the
quota header fields as well as to block number references in the quota
tree.

Addresses: CVE-2019-5094
Addresses: TALOS-2019-0887
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
(cherry picked from commit 8dbe7b475ec5e91ed767239f0e85880f416fc384)
lib/support/mkquota.c diff | blob | history
lib/support/quotaio_tree.c diff | blob | history
lib/support/quotaio_v2.c diff | blob | history
Mirror of git://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git