| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20220607042444.1798015-1-tytso@mit.edu>
Date: Tue, 7 Jun 2022 00:24:37 -0400
From: "Theodore Ts'o" <tytso@....edu>
To: Ext4 Developers List <linux-ext4@...r.kernel.org>
Cc: Nils Bars <nils.bars@....de>,
Moritz Schlögel <moritz.schloegel@....de>,
Nico Schiller <nico.schiller@....de>,
"Theodore Ts'o" <tytso@....edu>
Subject: [PATCH 0/7] Fix various bugs found via a fuzzing campaign
Theodore Ts'o (7):
e2fsck: sanity check the journal inode number
e2fsck: fix potential out-of-bounds read in inc_ea_inode_refs()
libext2fs: add check for too-short directory blocks
e2fsck: check for xattr value size integer wraparound
e2fsck: avoid out-of-bounds write for very deep extent trees
libext2fs: check for cyclic loops in the extent tree
libext2fs: check for invalid blocks in ext2fs_punch_blocks()
e2fsck/extents.c | 10 +++++++++-
e2fsck/journal.c | 9 ++++++++-
e2fsck/pass1.c | 21 +++++++++++++--------
lib/ext2fs/alloc_stats.c | 3 ++-
lib/ext2fs/dir_iterate.c | 4 ++++
lib/ext2fs/ext2_err.et.in | 3 +++
lib/ext2fs/ext2_ext_attr.h | 11 +++++++++++
lib/ext2fs/extent.c | 11 +++++++++--
lib/ext2fs/punch.c | 4 ++++
9 files changed, 63 insertions(+), 13 deletions(-)
--
2.31.0
Powered by blists - more mailing lists