linux/fs/ext4/extents.c at a84c872c8b306e11c95c4912f4bed7f567e901b4

mirror of https://github.com/raspberrypi/linux.git synced 2025-12-07 18:40:10 +00:00

Files

Theodore Ts'o d69a9df614 ext4: verify the depth of extent tree in ext4_find_extent()

commit bc890a6024 upstream.

If there is a corupted file system where the claimed depth of the
extent tree is -1, this can cause a massive buffer overrun leading to
sadness.

This addresses CVE-2018-10877.

https://bugzilla.kernel.org/show_bug.cgi?id=199417

Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Cc: stable@kernel.org
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

2018-07-11 16:29:17 +02:00

163 KiB

Raw Blame History

View Raw

163 KiB Raw Blame History

163 KiB

Raw Blame History