From mboxrd@z Thu Jan 1 00:00:00 1970 From: Tom Rini Date: Thu, 17 Jan 2019 17:44:35 -0500 Subject: [U-Boot] [U-Boot, v10, 06/10] fs: prevent overwriting reserved memory In-Reply-To: <20190114213823.32486-7-simon.k.r.goldschmidt@gmail.com> References: <20190114213823.32486-7-simon.k.r.goldschmidt@gmail.com> Message-ID: <20190117224435.GD27429@bill-the-cat> List-Id: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: u-boot@lists.denx.de On Mon, Jan 14, 2019 at 10:38:19PM +0100, Simon Goldschmidt wrote: > This fixes CVE-2018-18440 ("insufficient boundary checks in filesystem > image load") by using lmb to check the load size of a file against > reserved memory addresses. > > Signed-off-by: Simon Goldschmidt > Reviewed-by: Simon Glass Applied to u-boot/master, thanks! -- Tom -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: not available URL: