kernel_google_marlin.git - kernel_google

diff options

author	Theodore Ts'o <tytso@mit.edu>	2018-06-17 00:41:14 -0400
committer	Andrew Lehmer <alehmer@google.com>	2018-10-31 19:47:18 +0000
commit	b0ee76834b05235dc0ad023570d9298630662d7a (patch)
tree	9f4bad6f9957ba6117e4a6d84257d3c395d6b5a9 /net/lapb/lapb_iface.c
parent	8a5902ee807b8d894428c9eb5e4303f39fd0f676 (diff)

ext4: add more inode number paranoia checks

commit c37e9e013469521d9adb932d17a1795c139b36db upstream. If there is a directory entry pointing to a system inode (such as a journal inode), complain and declare the file system to be corrupted. Also, if the superblock's first inode number field is too small, refuse to mount the file system. This addresses CVE-2018-10882. https://bugzilla.kernel.org/show_bug.cgi?id=200069 Bug: 116406626 Signed-off-by: Theodore Ts'o <tytso@mit.edu> [bwh: Backported to 3.16: adjust context] Signed-off-by: Ben Hutchings <ben@decadent.org.uk> Signed-off-by: Greg Hackmann <ghackmann@google.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Change-Id: Ia489a366031f5a4a69506aecb8030509ed901253

Diffstat (limited to 'net/lapb/lapb_iface.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: