From mboxrd@z Thu Jan  1 00:00:00 1970
From: Tom Rini <trini@konsulko.com>
Date: Thu, 17 Jan 2019 17:44:48 -0500
Subject: [U-Boot] [U-Boot, v10,
	09/10] tftp: prevent overwriting reserved memory
In-Reply-To: <20190114213823.32486-10-simon.k.r.goldschmidt@gmail.com>
References: <20190114213823.32486-10-simon.k.r.goldschmidt@gmail.com>
Message-ID: <20190117224448.GG27429@bill-the-cat>
List-Id: <u-boot.lists.denx.de>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: u-boot@lists.denx.de

On Mon, Jan 14, 2019 at 10:38:22PM +0100, Simon Goldschmidt wrote:

> This fixes CVE-2018-18439 ("insufficient boundary checks in network
> image boot") by using lmb to check for a valid range to store
> received blocks.
> 
> Signed-off-by: Simon Goldschmidt <simon.k.r.goldschmidt@gmail.com>
> Acked-by: Joe Hershberger <joe.hershberger@ni.com>

With some lib/Makefile tweaks for the odd SPL+network use cases:
Applied to u-boot/master, thanks!

-- 
Tom
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.denx.de/pipermail/u-boot/attachments/20190117/0a003957/attachment.sig>