]> git.ipfire.org Git - thirdparty/util-linux.git/commit
projects / thirdparty / util-linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b408a29) | patch
libblkid: avoid buffer overflow in ocfs superblock parsing
authorMilan Broz <gmazyland@gmail.com>
Sun, 9 Oct 2022 18:20:45 +0000 (20:20 +0200)
committerKarel Zak <kzak@redhat.com>
Mon, 10 Oct 2022 08:17:29 +0000 (10:17 +0200)
commitd7fa8ed63891b0058c5df8aa809e34de61008f51
tree7aa94e3532bf92ca7820be12254986291a3a769ftree
parentb408a291d39e9b637f6104eb4e1f8e60816421e2commit | diff
libblkid: avoid buffer overflow in ocfs superblock parsing

Label and mount values are checked only according to on-disk
values and not checked against the real structure size.
This can lead to reading of memory outside of superblock
struct and subsequent crash.

Reproducer found with OSS-Fuzz (issue 52270) running over
cryptsetup project (blkid is used in header init).

Signed-off-by: Milan Broz <gmazyland@gmail.com>
libblkid/src/superblocks/ocfs.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.