projects / firefly-linux-kernel-4.4.55.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 68e7f41) | patch
Squashfs: add corruption check in get_dir_index_using_offset()
authorPhillip Lougher <phillip@squashfs.org.uk>
Tue, 3 Sep 2013 03:52:52 +0000 (04:52 +0100)
committerPhillip Lougher <phillip@squashfs.org.uk>
Fri, 6 Sep 2013 03:57:53 +0000 (04:57 +0100)
commitf960cae5357d8e52b8af91e8b1621cae565dffb3
tree0b1abaf2638d2bb842206e27009c5383687974f0tree | snapshot
parent68e7f412370ecfeb1bd667d0d174fad34517516ecommit | diff
Squashfs: add corruption check in get_dir_index_using_offset()

We read the size (of the name) field from disk.  This value should
be sanity checked for correctness to avoid blindly reading
huge amounts of unnecessary data from disk on corruption.

Note, here we're not actually reading the name into a buffer, but
skipping it, and so corruption doesn't cause buffer overflow, merely
lots of unnecessary amounts of data to be read.

Signed-off-by: Phillip Lougher <phillip@squashfs.org.uk>
fs/squashfs/dir.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.