mirror of
https://git.yoctoproject.org/poky
synced 2026-04-21 21:32:12 +02:00
util-linux: fix CVE-2021-37600
sys-utils/ipcutils: be careful when call calloc() for uint64 nmembs Fix: #1395 (From OE-Core rev: 9822232b4abd811bb9c8562f98c0aefc748340a0) Signed-off-by: Karel Zak <kzak@redhat.com> CVE: CVE-2021-37600 Upstream-Status: Backport [1c9143d0c1f979c3daf10e1c37b5b1e916c22a1c] Signed-off-by: Dragos-Marian Panait <dragos.panait@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Dragos-Marian Panait
committed by
Richard Purdie
Richard Purdie
parent
4e413911df
commit
b3246ebd87
@@ -35,6 +35,7 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/utils/util-linux/v${MAJOR_VERSION}/util-lin
|
||||
file://run-ptest \
|
||||
file://display_testname_for_subtest.patch \
|
||||
file://avoid_parallel_tests.patch \
|
||||
file://CVE-2021-37600.patch \
|
||||
"
|
||||
|
||||
SRC_URI[sha256sum] = "8e4bd42053b726cf86eb4d13a73bc1d9225a2c2e1a2e0d2a891f1020f83e6b76"
|
||||
|
||||
33
meta/recipes-core/util-linux/util-linux/CVE-2021-37600.patch
Normal file
33
meta/recipes-core/util-linux/util-linux/CVE-2021-37600.patch
Normal file
@@ -0,0 +1,33 @@
|
||||
From 1c9143d0c1f979c3daf10e1c37b5b1e916c22a1c Mon Sep 17 00:00:00 2001
|
||||
From: Karel Zak <kzak@redhat.com>
|
||||
Date: Tue, 27 Jul 2021 11:58:31 +0200
|
||||
Subject: [PATCH] sys-utils/ipcutils: be careful when call calloc() for uint64
|
||||
nmembs
|
||||
|
||||
Fix: https://github.com/karelzak/util-linux/issues/1395
|
||||
Signed-off-by: Karel Zak <kzak@redhat.com>
|
||||
|
||||
CVE: CVE-2021-37600
|
||||
Upstream-Status: Backport [1c9143d0c1f979c3daf10e1c37b5b1e916c22a1c]
|
||||
|
||||
Signed-off-by: Dragos-Marian Panait <dragos.panait@windriver.com>
|
||||
---
|
||||
sys-utils/ipcutils.c | 2 +-
|
||||
1 file changed, 1 insertion(+), 1 deletion(-)
|
||||
|
||||
diff --git a/sys-utils/ipcutils.c b/sys-utils/ipcutils.c
|
||||
index e784c4dcb..18868cfd3 100644
|
||||
--- a/sys-utils/ipcutils.c
|
||||
+++ b/sys-utils/ipcutils.c
|
||||
@@ -218,7 +218,7 @@ static void get_sem_elements(struct sem_data *p)
|
||||
{
|
||||
size_t i;
|
||||
|
||||
- if (!p || !p->sem_nsems || p->sem_perm.id < 0)
|
||||
+ if (!p || !p->sem_nsems || p->sem_nsems > SIZE_MAX || p->sem_perm.id < 0)
|
||||
return;
|
||||
|
||||
p->elements = xcalloc(p->sem_nsems, sizeof(struct sem_elem));
|
||||
--
|
||||
2.25.1
|
||||
|
||||
Reference in New Issue
Block a user