linux/fs/cifs/readdir.c at a84c872c8b306e11c95c4912f4bed7f567e901b4

mirror of https://github.com/raspberrypi/linux.git synced 2025-12-07 18:40:10 +00:00

Files

Dan Carpenter 20c8102b32 cifs: prevent integer overflow in nxt_dir_entry()

commit 8ad8aa3535 upstream.

The "old_entry + le32_to_cpu(pDirInfo->NextEntryOffset)" can wrap
around so I have added a check for integer overflow.

Reported-by: Dr Silvio Cesare of InfoSect <silvio.cesare@gmail.com>
Reviewed-by: Ronnie Sahlberg <lsahlber@redhat.com>
Reviewed-by: Aurelien Aptel <aaptel@suse.com>
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Steve French <stfrench@microsoft.com>
CC: Stable <stable@vger.kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

2018-09-26 08:38:08 +02:00

25 KiB

Raw Blame History

View Raw

25 KiB Raw Blame History

25 KiB

Raw Blame History