Paths

Table of Contentst

Diffusion FreeBSD src repository 3070bedd3dc5

geom_part: Fix potential integer overflow when checking size of the table
3070bedd3dc5
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

geom_part: Fix potential integer overflow when checking size of the table

hdr_entries and hdr_entsz are both uint32_t as defined in UEFI spec.
Current spec does not have upper limit of the number of partition
entries and the size of partition entry, it is potential that malicious
or corrupted GPT header read from untrusted source contains large size of
entry number or size.

PR: 266548
Reviewed by: oshogbo, cem, imp, markj
Approved by: kp (mentor)
MFC after: 2 weeks
Differential Revision: https://reviews.freebsd.org/D36709

(cherry picked from commit 2e543af13ab3746c7626c53293c007c8747eff9d)

Details

Provenance

zlei	Authored on Dec 21 2022, 1:04 AM

Reviewer

Differential Revision

D36709: geom_part: Fix potential integer overflow when checking size of the table

Parents

rGcd4c0b01cbae: wg: Use NET_EPOCH_DRAIN_CALLBACKS macro

Branches

Unknown

Tags

Unknown

Event Timeline

zlei committed rG3070bedd3dc5: geom_part: Fix potential integer overflow when checking size of the table (authored by zlei).Jan 11 2023, 10:35 AM

zlei added an edge: D36709: geom_part: Fix potential integer overflow when checking size of the table.Jan 11 2023, 10:41 AM

zlei mentioned this in rG8fdb1181ab8d: geom_part: Fix potential integer overflow when checking size of the table.Sep 6 2023, 4:53 AM

Changes (1)

Path

Size

sys/

geom/

part/

rG3070bedd3dc5

sys/geom/part/g_part_gpt.c

Loading...