On Wed, 17 Jul 2024 08:33:22 +0200, Ahmad Fatoum wrote:
> Richard reports[1] that barebox is susceptible to a number of memory safety
> issues when parsing crafted squashfs files, which have been fixed in the
> upstream Linux implementation in the meantime.
>
> Import the mentioned commits from Linux to fix this:
>
> 01cfb7937a9af ("squashfs: be more careful about metadata corruption")
> d512584780d3e ("squashfs: more metadata hardening")
> cdbb65c4c7ead ("squashfs metadata 2: electric boogaloo")
> 71755ee5350b6 ("squashfs: more metadata hardening")
> a3f94cb99a854 ("Squashfs: Compute expected length from inode size rather than block length")
>
> [...]
Applied, thanks!
[1/6] squashfs: be more careful about metadata corruption
https://git.pengutronix.de/cgit/barebox/commit/?id=526642ffecd0 (link may not be stable)
[2/6] squashfs: more metadata hardening
https://git.pengutronix.de/cgit/barebox/commit/?id=2b601e956dc6 (link may not be stable)
[3/6] squashfs metadata 2: electric boogaloo
https://git.pengutronix.de/cgit/barebox/commit/?id=2bd8da6174f7 (link may not be stable)
[4/6] squashfs: more metadata hardening
https://git.pengutronix.de/cgit/barebox/commit/?id=2b601e956dc6 (link may not be stable)
[5/6] Squashfs: Compute expected length from inode size rather than block length
https://git.pengutronix.de/cgit/barebox/commit/?id=0f180583cb2d (link may not be stable)
[6/6] squashfs: refuse mount of squashfs images with non-128K block size
https://git.pengutronix.de/cgit/barebox/commit/?id=56d5844b1c83 (link may not be stable)
Best regards,
--
Sascha Hauer <s.hauer@xxxxxxxxxxxxxx>
