cf3a4f1e86ecdd24f87b615051b49d8e1968c230 - github/trini/u-boot

commit	cf3a4f1e86ecdd24f87b615051b49d8e1968c230	[log] [tgz]
author	liucheng (G) <liucheng32@huawei.com>	Thu Aug 29 13:47:54 2019 +0000
committer	Joe Hershberger <joe.hershberger@ni.com>	Wed Sep 04 11:37:19 2019 -0500
tree	7ccee6d442944ff635fc3962b67ce641c104dd78
parent	aa207cf3a6d68f39d64cd29057a4fb63943e9078 [diff]

CVE-2019-14195: nfs: fix unbounded memcpy with unvalidated length at nfs_readlink_reply

This patch adds a check to rpc_pkt.u.reply.data at nfs_readlink_reply.

Signed-off-by: Cheng Liu <liucheng32@huawei.com>
Reported-by: Fermín Serna <fermin@semmle.com>
Acked-by: Joe Hershberger <joe.hershberger@ni.com>

net/nfs.c[diff]

1 file changed

tree: 7ccee6d442944ff635fc3962b67ce641c104dd78