Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / mainline / linux / bc890a60247171294acc0bd67d211fa4b88d40ba
commitbc890a60247171294acc0bd67d211fa4b88d40ba[log] [tgz]
authorTheodore Ts'o <tytso@mit.edu>Thu Jun 14 12:55:10 2018 -0400
committerTheodore Ts'o <tytso@mit.edu>Thu Jun 14 12:55:10 2018 -0400
treecb1aeb05ac0a8eb30f12d49c68da6f1a65187bc2
parent8844618d8aa7a9973e7b527d038a2a589665002c [diff]
ext4: verify the depth of extent tree in ext4_find_extent()

If there is a corupted file system where the claimed depth of the
extent tree is -1, this can cause a massive buffer overrun leading to
sadness.

This addresses CVE-2018-10877.

https://bugzilla.kernel.org/show_bug.cgi?id=199417

Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Cc: stable@kernel.org
2 files changed
tree: cb1aeb05ac0a8eb30f12d49c68da6f1a65187bc2
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. LICENSES/
  15. mm/
  16. net/
  17. samples/
  18. scripts/
  19. security/
  20. sound/
  21. tools/
  22. usr/
  23. virt/
  24. .clang-format
  25. .cocciconfig
  26. .get_maintainer.ignore
  27. .gitattributes
  28. .gitignore
  29. .mailmap
  30. COPYING
  31. CREDITS
  32. Kbuild
  33. Kconfig
  34. MAINTAINERS
  35. Makefile
  36. README