[U-Boot] [PATCH v5 6/9] fs: prevent overwriting reserved memory
Simon Glass
sjg at chromium.org
Tue Dec 11 01:07:02 UTC 2018
On Sun, 9 Dec 2018 at 13:46, Simon Goldschmidt
<simon.k.r.goldschmidt at gmail.com> wrote:
>
> This fixes CVE-2018-18440 ("insufficient boundary checks in filesystem
> image load") by using lmb to check the load size of a file against
> reserved memory addresses.
>
> Signed-off-by: Simon Goldschmidt <simon.k.r.goldschmidt at gmail.com>
> ---
>
> Changes in v5: None
> Changes in v4: None
> Changes in v2: None
>
> fs/fs.c | 56 ++++++++++++++++++++++++++++++++++++++++++++++++---
> include/lmb.h | 2 ++
> lib/lmb.c | 13 ++++++++++++
> 3 files changed, 68 insertions(+), 3 deletions(-)
>
Reviewed-by: Simon Glass <sjg at chromium.org>
More information about the U-Boot
mailing list