git://git.whamcloud.com - tools/e2fsprogs.git/commit

Whamcloud - gitweb

git://git.whamcloud.com / tools / e2fsprogs.git / commit

author	Theodore Ts'o <tytso@mit.edu>
	Wed, 26 Aug 2020 20:29:29 +0000 (16:29 -0400)
committer	Theodore Ts'o <tytso@mit.edu>
	Wed, 26 Aug 2020 20:29:29 +0000 (16:29 -0400)
commit	7b63656df911172efea39295266501cdd91869d7
tree	974b71732fcf22b0baee474402ac1b1203a5a3f7	tree \| snapshot
parent	6cdd4b9309fb7aad1746e7abab2afc756274dcbc	commit \| diff

libext2fs: fix potential buffer overrun in __get_dirent_tail()

If the file system is corrupted, there is a potential of a read-only
buffer overrun. Fortunately, we don't actually use the result of that
pointer dereference, and the overrun is at most 64k.

Google-Bug-Id: #158564737
Fixes: eb88b751745b ("libext2fs: make ext2fs_dirent_has_tail() more strict")
Signed-off-by: Theodore Ts'o <tytso@mit.edu>

lib/ext2fs/csum.c

diff | blob | history

Mirror of git://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git

RSS Atom