vbatts/grub
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
grub/grub-core
History
Peter Jones 3f05d693d1 malloc: Use overflow checking primitives where we do complex allocations 
This attempts to fix the places where we do the following where
arithmetic_expr may include unvalidated data:

  X = grub_malloc(arithmetic_expr);

It accomplishes this by doing the arithmetic ahead of time using grub_add(),
grub_sub(), grub_mul() and testing for overflow before proceeding.

Among other issues, this fixes:
  - allocation of integer overflow in grub_video_bitmap_create()
    reported by Chris Coulson,
  - allocation of integer overflow in grub_png_decode_image_header()
    reported by Chris Coulson,
  - allocation of integer overflow in grub_squash_read_symlink()
    reported by Chris Coulson,
  - allocation of integer overflow in grub_ext2_read_symlink()
    reported by Chris Coulson,
  - allocation of integer overflow in read_section_as_string()
    reported by Chris Coulson.

Fixes: CVE-2020-14309, CVE-2020-14310, CVE-2020-14311

Signed-off-by: Peter Jones <pjones@redhat.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
2020-07-29 16:55:47 +02:00
..
boot A workaround for clang problem assembling startup_raw.S 2019-04-08 15:22:10 +10:00
bus calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
commands malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
disk malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
efiemu calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
font malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
fs malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
gdb i386, x86_64, ppc: fix switch fallthrough cases with GCC7 2017-04-04 19:23:55 +03:00
gettext verifiers: File type for fine-grained signature-verification controlling 2018-11-09 13:25:31 +01:00
gfxmenu calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
hello * grub-core/commands/gptsync.c: Fix typographic quoting. 2012-03-03 13:05:08 +01:00
hook * grub-core/hook/datehook.c (grub_read_hook_datetime): Small stylistic 2011-11-11 21:03:49 +01:00
io calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
kern calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
lib malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
loader malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
mmap calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
net malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
normal malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
osdep calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
partmap calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
parttool * grub-core/net/http.c: Add TRANSLATORS comments. 2012-03-05 16:42:26 +01:00
script malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
term efi/console: Do not set text-mode until we actually need it 2020-04-21 22:13:14 +02:00
tests calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
video malloc: Use overflow checking primitives where we do complex allocations 2020-07-29 16:55:47 +02:00
gdb_grub.in * grub-core/gdb_grub.in: Fix overflow and wrong field. 2013-10-14 03:40:20 +02:00
genemuinit.sh use MODULE_FILES for genemuinit* instead of MOD_FILES 2014-01-18 23:15:40 +04:00
genemuinitheader.sh use MODULE_FILES for genemuinit* instead of MOD_FILES 2014-01-18 23:15:40 +04:00
genmod.sh.in .mod files: Strip annobin annotations and .eh_frame, and their relocations 2018-03-05 14:08:22 +01:00
genmoddep.awk enforcing fixup 2017-08-14 16:27:10 +02:00
gensyminfo.sh.in Fix shebang for termux. 2017-05-03 12:49:31 +02:00
gensymlist.sh Make 'make check' work on emu. 2013-04-27 02:00:16 +02:00
gentrigtables.c * grub-core/gentrigtables.c: Make tables const. 2013-03-01 11:15:09 +01:00
gmodule.pl.in * grub-core/gmodule.pl.in: Accept newer binutils which output 2014-09-21 18:23:23 +02:00
Makefile.am RISC-V: Add to build system 2019-02-25 14:02:05 +01:00
Makefile.core.def tpm: Enable module for all EFI platforms 2020-05-25 14:50:42 +02:00
modinfo.sh.in Fix shebang for termux. 2017-05-03 12:49:31 +02:00