projects / platform / kernel / linux-rpi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5890184) | patch
cifs: prevent integer overflow in nxt_dir_entry()
authorDan Carpenter <dan.carpenter@oracle.com>
Thu, 6 Sep 2018 09:47:51 +0000 (12:47 +0300)
committerSteve French <stfrench@microsoft.com>
Wed, 12 Sep 2018 14:27:57 +0000 (09:27 -0500)
commit8ad8aa353524d89fa2e09522f3078166ff78ec42
treec95029b8a3efc9cdfbb70b9d666812c44ff18b17tree | snapshot
parent5890184d2b506f88886b7322d7d44464453bd3a6commit | diff
cifs: prevent integer overflow in nxt_dir_entry()

The "old_entry + le32_to_cpu(pDirInfo->NextEntryOffset)" can wrap
around so I have added a check for integer overflow.

Reported-by: Dr Silvio Cesare of InfoSect <silvio.cesare@gmail.com>
Reviewed-by: Ronnie Sahlberg <lsahlber@redhat.com>
Reviewed-by: Aurelien Aptel <aaptel@suse.com>
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Steve French <stfrench@microsoft.com>
CC: Stable <stable@vger.kernel.org>
fs/cifs/readdir.c diff | blob | history
Domain: System / Kernel;