James Carter 0d0e47c7eb libsepol/cil: Fix integer overflow in the handling of hll line marks ... Nicolas Iooss reports: OSS-Fuzz found an integer overflow when compiling the following (empty) CIL policy: ;;*lms 2147483647 a ; (empty line) Change hll_lineno to uint32_t which is the type of the field hll_line in struct cil_tree_node where the line number will be stored eventually. Read the line number into an unsigned long variable using strtoul() instead of strtol(). On systems where ULONG_MAX > UINT32_MAX, return an error if the value is larger than UINT32_MAX. Also change hll_expand to uint32_t, since its value will be either 0 or 1 and there is no need for it to be signed. Reported-by: Nicolas Iooss <nicolas.iooss@m4x.org> Signed-off-by: James Carter <jwcart2@gmail.com>		2021-02-10 08:06:10 -05:00
..
cil	libsepol/cil: Fix integer overflow in the handling of hll line marks	2021-02-10 08:06:10 -05:00
include	libsepol: remove unused files	2021-02-05 10:19:30 +01:00
man	selinux: Update manpages after removing legacy boolean and user code	2019-07-29 23:46:47 +02:00
src	libsepol: include header files in source files when matching declarations	2021-02-05 10:19:34 +01:00
tests	libsepol/tests: drop ncurses dependency	2020-05-04 10:31:44 +02:00
utils	libsepol: build: follow standard semantics for DESTDIR and PREFIX	2018-02-14 15:59:36 +01:00
.gitignore	libsepol: build cil into libsepol	2014-08-26 08:03:31 -04:00
COPYING	initial import from svn trunk revision 2950	2008-08-19 15:30:36 -04:00
Makefile	libsepol: build cil into libsepol	2014-08-26 08:03:31 -04:00
VERSION	Update VERSIONs to 3.2-rc2 for release.	2021-02-03 11:26:28 +01:00