[U-Boot] [PATCH 5/5] CVE-2019-13106: ext4: fix out-of-bounds memset

Tom Rini trini at konsulko.com
Thu Jul 18 23:59:23 UTC 2019


On Mon, Jul 08, 2019 at 04:37:07PM -0700, Paul Emge wrote:

> In ext4fs_read_file in ext4fs.c, a memset can overwrite the bounds of
> the destination memory region. This patch adds a check to disallow
> this.
> 
> Signed-off-by: Paul Emge <paulemge at forallsecure.com>

Applied to u-boot/master, thanks!

-- 
Tom
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.denx.de/pipermail/u-boot/attachments/20190718/79deab68/attachment.sig>


More information about the U-Boot mailing list