Diffusion FreeBSD src repository 2e7f9244ebef

libnv: allocate buffer in a safe way
2e7f9244ebef
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

libnv: allocate buffer in a safe way

Ensure that the calculation of size of array doesn't
overflow.

Security: FreeBSD-24:09.libnv
Security: CVE-2024-45287
Security: CAP-02
Reported by: Synacktiv
Reported by: Taylor R Campbell (NetBSD)
Sponsored by: The Alpha-Omega Project
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D46131

(cherry picked from commit 36fa90dbde0060aacb5677d0b113ee168e839071)

Details

Provenance

Authored on Aug 26 2024, 6:10 PM

Differential Revision

Restricted Differential Revision

Parents

rGd6e5f8643d37: pf: rework pf_icmp_state_lookup() failure mode

Branches

Unknown

Tags

Unknown

Event Timeline

oshogbo committed rG2e7f9244ebef: libnv: allocate buffer in a safe way (authored by oshogbo).Wed, Sep 4, 12:24 PM

oshogbo added an edge: Restricted Differential Revision.

emaste mentioned this in rGa8d0ba483332: libnv: allocate buffer in a safe way.Wed, Sep 4, 7:13 PM

emaste mentioned this in rGfd4ee5b9eabf: libnv: allocate buffer in a safe way.Wed, Sep 4, 8:30 PM

Changes (2)

Path

Size

sys/

contrib/

libnv/

rG2e7f9244ebef

sys/contrib/libnv/bsd_nvpair.c

Loading...

sys/contrib/libnv/nvlist.c

Loading...