android_kernel_xiaomi_sm8350/fs/hfs
Eric Sesterhenn d38b7aa7fc hfs: fix namelength memory corruption
Fix a stack corruption caused by a corrupted hfs filesystem.  If the
catalog name length is corrupted the memcpy overwrites the catalog btree
structure.  Since the field is limited to HFS_NAMELEN bytes in the
structure and the file format, we throw an error if it is too long.

Cc: Roman Zippel <zippel@linux-m68k.org>
Signed-off-by: Eric Sesterhenn <snakebyte@gmx.de>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
2008-10-16 11:21:46 -07:00
..
attr.c
bfind.c
bitmap.c hfs: convert bitmap_lock in a mutex 2008-07-25 10:53:33 -07:00
bnode.c
brec.c
btree.c hfs: convert extents_lock in a mutex 2008-07-25 10:53:33 -07:00
btree.h
catalog.c hfs: fix namelength memory corruption 2008-10-16 11:21:46 -07:00
dir.c
extent.c hfs: convert extents_lock in a mutex 2008-07-25 10:53:33 -07:00
hfs_fs.h hfs: convert extents_lock in a mutex 2008-07-25 10:53:33 -07:00
hfs.h
inode.c [PATCH] f_count may wrap around 2008-07-26 20:53:40 -04:00
Makefile
mdb.c
part_tbl.c
string.c
super.c vfs: Use const for kernel parser table 2008-10-13 10:10:37 -07:00
sysdep.c
trans.c