git.openwrt.org Git - openwrt/staging/blogic.git/commit

projects / openwrt / staging / blogic.git / commit

author	Dan Carpenter <dan.carpenter@oracle.com>
	Thu, 6 Sep 2018 09:47:51 +0000 (12:47 +0300)
committer	Steve French <stfrench@microsoft.com>
	Wed, 12 Sep 2018 14:27:57 +0000 (09:27 -0500)
commit	8ad8aa353524d89fa2e09522f3078166ff78ec42
tree	c95029b8a3efc9cdfbb70b9d666812c44ff18b17	tree \| snapshot
parent	5890184d2b506f88886b7322d7d44464453bd3a6	commit \| diff

cifs: prevent integer overflow in nxt_dir_entry()

The "old_entry + le32_to_cpu(pDirInfo->NextEntryOffset)" can wrap
around so I have added a check for integer overflow.

Reported-by: Dr Silvio Cesare of InfoSect <silvio.cesare@gmail.com>
Reviewed-by: Ronnie Sahlberg <lsahlber@redhat.com>
Reviewed-by: Aurelien Aptel <aaptel@suse.com>
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Steve French <stfrench@microsoft.com>
CC: Stable <stable@vger.kernel.org>

fs/cifs/readdir.c

diff | blob | history

John Crispins staging tree

RSS Atom