HomeFreeBSD

libnv: allocate buffer in a safe way

Description

libnv: allocate buffer in a safe way

Ensure that the calculation of size of array doesn't
overflow.

Security: FreeBSD-24:09.libnv
Security: CVE-2024-45287
Security: CAP-02
Reported by: Synacktiv
Reported by: Taylor R Campbell (NetBSD)
Sponsored by: The Alpha-Omega Project
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D46131

(cherry picked from commit 36fa90dbde0060aacb5677d0b113ee168e839071)
(cherry picked from commit 371af89975e3edd1e9f57aa5efba2598b63c0d2d)

Approved by: so

Details

Provenance
oshogboAuthored on Aug 26 2024, 6:10 PM
emasteCommitted on Sep 4 2024, 8:46 PM
Differential Revision
Restricted Differential Revision
Parents
rG1a207e5cdf99: Add UPDATING entries and bump the branch version
Branches
Unknown
Tags
Unknown