[PATCH] ext2: add additinal sanity check for ext2_acl_from_disk()

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

In the case ACL_USER and ACL_GROUP we check if value has exceeded end,
add same check in the case ACL_OTHER as well.

Signed-off-by: Chengguang Xu <cgxu519@xxxxxxx>
---
 fs/ext2/acl.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/fs/ext2/acl.c b/fs/ext2/acl.c
index 224c04abb2e5..3082d93f1cb1 100644
--- a/fs/ext2/acl.c
+++ b/fs/ext2/acl.c
@@ -53,6 +53,8 @@ ext2_acl_from_disk(const void *value, size_t size)
 			case ACL_OTHER:
 				value = (char *)value +
 					sizeof(ext2_acl_entry_short);
+				if ((char *)value > end)
+					goto fail;
 				break;
 
 			case ACL_USER:
-- 
2.17.1
[Index of Archives]     [Reiser Filesystem Development]     [Ceph FS]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Linux FS]     [Yosemite National Park]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Device Mapper]     [Linux Media]

  Powered by Linux