On Mo, 13.05.19 16:58, Thadeu Lima de Souza Cascardo (cascardo@xxxxxxxxxxxxx) wrote: > When we read from keyring, a temporary buffer is allocated in order to > determine the size needed for the entire data. However, when zeroing that area, > we use the data size returned by the read instead of the lesser size allocate > for the buffer. > > That will cause memory corruption that causes systemd-cryptsetup to crash > either when a single large password is used or when multiple passwords have > already been pushed to the keyring. > > Signed-off-by: Thadeu Lima de Souza Cascardo > <cascardo@xxxxxxxxxxxxx> Converted to a github PR: https://github.com/systemd/systemd/pull/12566 Looks great! Thanks! Lennart -- Lennart Poettering, Berlin _______________________________________________ systemd-devel mailing list systemd-devel@xxxxxxxxxxxxxxxxxxxxx https://lists.freedesktop.org/mailman/listinfo/systemd-devel
Re: [PATCH] ask-password: prevent buffer overrow when reading from keyring
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: [PATCH] ask-password: prevent buffer overrow when reading from keyring
- From: Lennart Poettering <lennart@xxxxxxxxxxxxxx>
- Date: Tue, 14 May 2019 16:22:52 +0200
- Cc: systemd-devel@xxxxxxxxxxxxxxxxxxxxx
- In-reply-to: <20190513195801.26721-1-cascardo@canonical.com>
- References: <20190513195801.26721-1-cascardo@canonical.com>
- References:
- [PATCH] ask-password: prevent buffer overrow when reading from keyring
- From: Thadeu Lima de Souza Cascardo
- [PATCH] ask-password: prevent buffer overrow when reading from keyring
- Prev by Date: Re: Antw: Re: Antw: Re: Arbitrary restrictions (e.g. for RuntimeDirectory)
- Next by Date: Re: "bad" status for genersated target; why?
- Previous by thread: Re: [PATCH] ask-password: prevent buffer overrow when reading from keyring
- Next by thread: "bad" status for genersated target; why?
- Index(es):
 |