linux/fs/partitions
Timo Warns cae13fe4cc Fix for buffer overflow in ldm_frag_add not sufficient
As Ben Hutchings discovered [1], the patch for CVE-2011-1017 (buffer
overflow in ldm_frag_add) is not sufficient.  The original patch in
commit c340b1d640 ("fs/partitions/ldm.c: fix oops caused by corrupted
partition table") does not consider that, for subsequent fragments,
previously allocated memory is used.

[1] http://lkml.org/lkml/2011/5/6/407

Reported-by: Ben Hutchings <ben@decadent.org.uk>
Signed-off-by: Timo Warns <warns@pre-sense.de>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
2011-05-20 16:40:36 -07:00
..
acorn.c
acorn.h
amiga.c
amiga.h
atari.c
atari.h
check.c Fix common misspellings 2011-03-31 11:26:23 -03:00
check.h
efi.c Validate size of EFI GUID partition entries. 2011-05-06 07:46:37 -07:00
efi.h
ibm.c
ibm.h
karma.c
karma.h
Kconfig
ldm.c Fix for buffer overflow in ldm_frag_add not sufficient 2011-05-20 16:40:36 -07:00
ldm.h
mac.c fs/partitions: Validate map_count in Mac partition tables 2011-02-17 17:50:51 -08:00
mac.h
Makefile
msdos.c
msdos.h
osf.c Increase OSF partition limit from 8 to 18 2011-03-16 08:04:07 -07:00
osf.h
sgi.c
sgi.h
sun.c
sun.h
sysv68.c
sysv68.h
ultrix.c
ultrix.h