rpms / kmod-ntfs3

Clone
Source Code
GIT

Blame SOURCES/0024-fs-ntfs3-Potential-NULL-dereference-in-hdr_find_spli.patch

c8-sig-kmods c8s-sig-kmods c9s-sig-kmods
  1.   d83023a0eaf4f97713e86b700d415a21e4e5add2
  2.   SOURCES
  3.   0024-fs-ntfs3-Potential-NULL-dereference-in-hdr_find_spli.patch
Blob History Raw
Kmods SIG d83023 
From 8c83a4851da1c7eda83098ade238665b15774da3 Mon Sep 17 00:00:00 2001
Kmods SIG d83023 
From: Dan Carpenter <dan.carpenter@oracle.com>
Kmods SIG d83023 
Date: Tue, 24 Aug 2021 10:50:15 +0300
Kmods SIG d83023 
Subject: [Backport 8c83a4851da1] src: Potential NULL dereference in
Kmods SIG d83023 
 hdr_find_split()
Kmods SIG d83023
Kmods SIG d83023 
The "e" pointer is dereferenced before it has been checked for NULL.
Kmods SIG d83023 
Move the dereference after the NULL check to prevent an Oops.
Kmods SIG d83023
Kmods SIG d83023 
Fixes: 82cae269cfa9 ("src: Add initialization of super block")
Kmods SIG d83023 
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Kmods SIG d83023 
Reviewed-by: Kari Argillander <kari.argillander@gmail.com>
Kmods SIG d83023 
Signed-off-by: Konstantin Komarov <almaz.alexandrovich@paragon-software.com>
Kmods SIG d83023 
---
Kmods SIG d83023 
 src/index.c | 3 ++-
Kmods SIG d83023 
 1 file changed, 2 insertions(+), 1 deletion(-)
Kmods SIG d83023
Kmods SIG d83023 
diff --git a/src/index.c b/src/index.c
Kmods SIG d83023 
index 5fb41c9c89100aee4d6d0e8f7cf65556aec11250..f4729aa50671f27de961305744b3839588696108 100644
Kmods SIG d83023 
--- a/src/index.c
Kmods SIG d83023 
+++ b/src/index.c
Kmods SIG d83023 
@@ -557,11 +557,12 @@ static const struct NTFS_DE *hdr_find_split(const struct INDEX_HDR *hdr)
Kmods SIG d83023 
 	size_t o;
Kmods SIG d83023 
 	const struct NTFS_DE *e = hdr_first_de(hdr);
Kmods SIG d83023 
 	u32 used_2 = le32_to_cpu(hdr->used) >> 1;
Kmods SIG d83023 
-	u16 esize = le16_to_cpu(e->size);
Kmods SIG d83023 
+	u16 esize;
Kmods SIG d83023
Kmods SIG d83023 
 	if (!e || de_is_last(e))
Kmods SIG d83023 
 		return NULL;
Kmods SIG d83023
Kmods SIG d83023 
+	esize = le16_to_cpu(e->size);
Kmods SIG d83023 
 	for (o = le32_to_cpu(hdr->de_off) + esize; o < used_2; o += esize) {
Kmods SIG d83023 
 		const struct NTFS_DE *p = e;
Kmods SIG d83023
Kmods SIG d83023 
--
Kmods SIG d83023 
2.31.1
Kmods SIG d83023

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation