linux-stable/fs/isofs
Jan Kara 6e80e9314f isofs: Fix out of bound access for corrupted isofs image
commit e96a1866b4 upstream.

When isofs image is suitably corrupted isofs_read_inode() can read data
beyond the end of buffer. Sanity-check the directory entry length before
using it.

Reported-and-tested-by: syzbot+6fc7fb214625d82af7d1@syzkaller.appspotmail.com
CC: stable@vger.kernel.org
Signed-off-by: Jan Kara <jack@suse.cz>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2021-11-12 14:43:03 +01:00
..
compress.c treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 142 2019-05-30 11:25:17 -07:00
dir.c isofs: release buffer head before return 2021-03-04 10:26:30 +01:00
export.c docs: fs: convert docs without extension to ReST 2019-07-31 13:31:05 -06:00
inode.c isofs: Fix out of bound access for corrupted isofs image 2021-11-12 14:43:03 +01:00
isofs.h isofs: joliet: Fix iocharset=utf8 mount option 2021-09-15 09:47:27 +02:00
joliet.c isofs: joliet: Fix iocharset=utf8 mount option 2021-09-15 09:47:27 +02:00
Kconfig treewide: Add SPDX license identifier - Makefile/Kconfig 2019-05-21 10:50:46 +02:00
Makefile
namei.c isofs: release buffer head before return 2021-03-04 10:26:30 +01:00
rock.c
rock.h
util.c
zisofs.h treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 142 2019-05-30 11:25:17 -07:00