vbatts/grub
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
grub/grub-core/io
History
Peter Jones f725fa7cb2 calloc: Use calloc() at most places 
This modifies most of the places we do some form of:

  X = malloc(Y * Z);

to use calloc(Y, Z) instead.

Among other issues, this fixes:
  - allocation of integer overflow in grub_png_decode_image_header()
    reported by Chris Coulson,
  - allocation of integer overflow in luks_recover_key()
    reported by Chris Coulson,
  - allocation of integer overflow in grub_lvm_detect()
    reported by Chris Coulson.

Fixes: CVE-2020-14308

Signed-off-by: Peter Jones <pjones@redhat.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
2020-07-29 16:55:47 +02:00
..
bufio.c Change fs functions to add fs_ prefix 2019-04-09 10:03:29 +10:00
gzio.c calloc: Use calloc() at most places 2020-07-29 16:55:47 +02:00
lzopio.c Change fs functions to add fs_ prefix 2019-04-09 10:03:29 +10:00
offset.c Change fs functions to add fs_ prefix 2019-04-09 10:03:29 +10:00
xzio.c Change fs functions to add fs_ prefix 2019-04-09 10:03:29 +10:00