Gitiles
Code Review Sign In
gerrit.cesnet.cz / github / trini / u-boot / 714e36df93021ca63a4d8925d9de76c438ab4405
commit714e36df93021ca63a4d8925d9de76c438ab4405[log] [tgz]
authorSimon Goldschmidt <simon.k.r.goldschmidt@gmail.com>Fri Dec 14 21:13:57 2018 +0100
committerTom Rini <trini@konsulko.com>Sat Dec 15 10:09:29 2018 -0500
treec50e6a7bcf26fc15dfad040e897507e4db5c110c
parentf186301b29afa6f88d12104c680906f94e43ec1d [diff]
tftp: prevent overwriting reserved memory

This fixes CVE-2018-18439 ("insufficient boundary checks in network
image boot") by using lmb to check for a valid range to store
received blocks.

Signed-off-by: Simon Goldschmidt <simon.k.r.goldschmidt@gmail.com>
1 file changed
tree: c50e6a7bcf26fc15dfad040e897507e4db5c110c
  1. .checkpatch.conf
  2. .gitignore
  3. .mailmap
  4. .travis.yml
  5. Documentation/
  6. Kbuild
  7. Kconfig
  8. Licenses/
  9. MAINTAINERS
  10. Makefile
  11. README
  12. api/
  13. arch/
  14. board/
  15. cmd/
  16. common/
  17. config.mk
  18. configs/
  19. disk/
  20. doc/
  21. drivers/
  22. dts/
  23. env/
  24. examples/
  25. fs/
  26. include/
  27. lib/
  28. net/
  29. post/
  30. scripts/
  31. test/
  32. tools/