[PATCH 1/8] fdt_region: Check for a single root node of the correct name

Tom Rini trini at konsulko.com
Tue Feb 16 04:35:53 CET 2021


On Mon, Feb 15, 2021 at 05:08:05PM -0700, Simon Glass wrote:

> At present fdt_find_regions() assumes that the FIT is a valid devicetree.
> If the FIT has two root nodes this is currently not detected in this
> function, nor does libfdt's fdt_check_full() notice. Also it is possible
> for the root node to have a name even though it should not.
> 
> Add checks for these and return -FDT_ERR_BADSTRUCTURE if a problem is
> detected.
> 
> CVE-2021-27097
> 
> Signed-off-by: Simon Glass <sjg at chromium.org>
> Reported-by: Bruce Monroe <bruce.monroe at intel.com>
> Reported-by: Arie Haenel <arie.haenel at intel.com>
> Reported-by: Julien Lenoir <julien.lenoir at intel.com>

Applied to u-boot/master, thanks!

-- 
Tom
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 659 bytes
Desc: not available
URL: <https://lists.denx.de/pipermail/u-boot/attachments/20210215/1cc70bb1/attachment.sig>


More information about the U-Boot mailing list