19 Jul
2019
19 Jul
'19
1:59 a.m.
On Mon, Jul 08, 2019 at 04:37:05PM -0700, Paul Emge wrote:
in ext4fs_read_file, it is possible for a broken/malicious file system to cause a memcpy of a negative number of bytes, which overflows all memory. This patch fixes the issue by checking for a negative length.
Signed-off-by: Paul Emge paulemge@forallsecure.com
Applied to u-boot/master, thanks!
--
Tom