iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/fs/cifs
History
Harshit Mogalapalli eb5f517569 cifs: potential buffer overflow in handling symlinks 
[ Upstream commit 64c4a37ac04eeb43c42d272f6e6c8c12bfcf4304 ]

Smatch printed a warning:
	arch/x86/crypto/poly1305_glue.c:198 poly1305_update_arch() error:
	__memcpy() 'dctx->buf' too small (16 vs u32max)

It's caused because Smatch marks 'link_len' as untrusted since it comes
from sscanf(). Add a check to ensure that 'link_len' is not larger than
the size of the 'link_str' buffer.

Fixes: c69c1b6eaea1 ("cifs: implement CIFSParseMFSymlink()")
Signed-off-by: Harshit Mogalapalli <harshit.m.mogalapalli@oracle.com>
Reviewed-by: Ronnie Sahlberg <lsahlber@redhat.com>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2022-04-20 09:12:49 +02:00
..
asn1.c
cifs: remove bogus debug code
2020-10-29 09:54:59 +01:00
cache.c
cifs: use 64-bit timestamps for fscache
2018-08-07 14:15:41 -05:00
cifs_debug.c
cifs: Don't display RDMA transport on reconnect
2019-12-21 10:57:33 +01:00
cifs_debug.h
cifs: add server argument to the dump_detail method
2018-05-27 17:56:35 -05:00
cifs_dfs_ref.c
cifs: use correct format characters
2019-04-05 22:32:59 +02:00
cifs_fs_sb.h
cifs: Properly handle auto disabling of serverino option
2019-09-16 08:22:17 +02:00
cifs_ioctl.h
cifs_spnego.c
smb3: on kerberos mount if server doesn't specify auth type use krb5
2018-11-13 11:08:48 -08:00
cifs_spnego.h
cifs_unicode.c
CIFS: Fix a potencially linear read overflow
2021-09-22 11:47:54 +02:00
cifs_unicode.h
cifs_uniupr.h
cifsacl.c
cifs: Fix mode output in debugging statements
2020-03-05 16:42:15 +01:00
cifsacl.h
cifs: For SMB2 security informaion query, check for minimum sized security descriptor instead of sizeof FileAllInformation class
2018-06-04 19:19:24 -05:00
cifsencrypt.c
cifs: Make sure all data pages are signed correctly
2018-08-07 14:15:41 -05:00
cifsfs.c
cifs: fix double free race when mount fails in cifs_get_root()
2022-03-08 19:04:06 +01:00
cifsfs.h
cifs: update internal module version number for cifs.ko to 2.12
2018-08-23 15:11:10 -05:00
cifsglob.h
CIFS: Properly process SMB3 lease breaks
2020-10-01 13:14:29 +02:00
cifspdu.h
cifsproto.h
cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs
2019-11-10 11:27:34 +01:00
cifssmb.c
cifs: fix leaked reference on requeued write
2020-05-20 08:18:49 +02:00
connect.c
cifs: fix incorrect check for null pointer in header_assemble
2021-10-06 15:31:10 +02:00
dir.c
cifs: report error instead of invalid when revalidating a dentry fails
2021-02-10 09:21:07 +01:00
dns_resolve.c
dns_resolve.h
export.c
file.c
cifs: revalidate mapping when we open files for SMB1 POSIX
2021-04-10 13:21:19 +02:00
fscache.c
cifs: use 64-bit timestamps for fscache
2018-08-07 14:15:41 -05:00
fscache.h
cifs: use 64-bit timestamps for fscache
2018-08-07 14:15:41 -05:00
inode.c
cifs: handle -EINTR in cifs_setattr
2020-11-05 11:08:44 +01:00
ioctl.c
Kconfig
cifs: In Kconfig CONFIG_CIFS_POSIX needs depends on legacy (insecure cifs)
2018-12-21 14:15:23 +01:00
link.c
cifs: potential buffer overflow in handling symlinks
2022-04-20 09:12:49 +02:00
Makefile
smb3: Add ftrace tracepoints for improved SMB3 debugging
2018-05-27 17:56:35 -05:00
misc.c
CIFS: Properly process SMB3 lease breaks
2020-10-01 13:14:29 +02:00
netmisc.c
fs: cifs: mute -Wunused-const-variable message
2019-11-06 13:05:51 +01:00
nterr.c
nterr.h
ntlmssp.h
readdir.c
cifs: check ntwrk_buf_start for NULL before dereferencing it
2019-02-12 19:47:17 +01:00
rfc1002pdu.h
sess.c
cifs: fix wrong release in sess_alloc_buffer() failed path
2021-09-22 11:48:08 +02:00
smb1ops.c
CIFS: Properly process SMB3 lease breaks
2020-10-01 13:14:29 +02:00
smb2file.c
cifs: Adjust indentation in smb2_open_file
2020-01-17 19:47:01 +01:00
smb2glob.h
cifs: remove struct smb2_hdr
2018-06-01 09:14:30 -05:00
smb2inode.c
smb3: Do not send SMB3 SET_INFO if nothing changed
2018-08-07 14:30:59 -05:00
smb2maperror.c
SMB3: retry on STATUS_INSUFFICIENT_RESOURCES instead of failing write
2019-06-25 11:36:01 +08:00
smb2misc.c
cifs: Silently ignore unknown oplock break handle
2021-04-10 13:21:19 +02:00
smb2ops.c
cifs: fix the out of range assignment to bit fields in parse_server_interfaces
2021-07-31 08:22:38 +02:00
smb2pdu.c
SMB3: incorrect file id in requests compounded with open
2021-06-03 08:38:10 +02:00
smb2pdu.h
smb3: Fix out-of-bounds bug in SMB2_negotiate()
2021-02-10 09:21:07 +01:00
smb2proto.h
CIFS: Close open handle after interrupted close
2019-12-21 10:57:35 +01:00
smb2status.h
smb2transport.c
CIFS: Do not skip SMB2 message IDs on send failures
2019-03-23 20:09:56 +01:00
smbdirect.c
cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE
2019-12-21 10:57:32 +01:00
smbdirect.h
cifs: smbd: take an array of reqeusts when sending upper layer data
2019-09-16 08:22:13 +02:00
smbencrypt.c
CIFS: refactor crypto shash/sdesc allocation&free
2018-04-01 20:24:39 -05:00
smberr.h
smbfsctl.h
trace.c
smb3: Add ftrace tracepoints for improved SMB3 debugging
2018-05-27 17:56:35 -05:00
trace.h
smb3: add tracepoint for slow responses
2018-08-07 14:28:01 -05:00
transport.c
cifs: Fix preauth hash corruption
2021-03-24 11:07:39 +01:00
winucase.c
xattr.c
CIFS: fix max ea value size
2019-10-05 13:10:12 +02:00