Gitiles
Code Review Sign In
gerrit.cesnet.cz / github / trini / u-boot / a156c47e39ad7d007c88919103ee0ee131c6203b
commita156c47e39ad7d007c88919103ee0ee131c6203b[log] [tgz]
authorSimon Goldschmidt <simon.k.r.goldschmidt@gmail.com>Mon Jan 14 22:38:22 2019 +0100
committerTom Rini <trini@konsulko.com>Wed Jan 16 23:15:53 2019 -0500
tree10344e1016918d333cf38f540d3888b406235293
parenta85c213f4725fc097e28795d87136e05508ba70b [diff]
tftp: prevent overwriting reserved memory

This fixes CVE-2018-18439 ("insufficient boundary checks in network
image boot") by using lmb to check for a valid range to store
received blocks.

Signed-off-by: Simon Goldschmidt <simon.k.r.goldschmidt@gmail.com>
Acked-by: Joe Hershberger <joe.hershberger@ni.com>
[trini: Always build lib/lmb.o on LMB and lib/fdtdec.o on OF_LIBFDT]
Signed-off-by: Tom Rini <trini@konsulko.com>
2 files changed
tree: 10344e1016918d333cf38f540d3888b406235293
  1. .checkpatch.conf
  2. .github/
  3. .gitignore
  4. .mailmap
  5. .travis.yml
  6. Documentation/
  7. Kbuild
  8. Kconfig
  9. Licenses/
  10. MAINTAINERS
  11. Makefile
  12. README
  13. api/
  14. arch/
  15. board/
  16. cmd/
  17. common/
  18. config.mk
  19. configs/
  20. disk/
  21. doc/
  22. drivers/
  23. dts/
  24. env/
  25. examples/
  26. fs/
  27. include/
  28. lib/
  29. net/
  30. post/
  31. scripts/
  32. test/
  33. tools/