HomeFreeBSD
Diffusion FreeBSD src repository 69d50af527c0

libnv: allocate buffer in a safe way
69d50af527c0
Actions

Description

libnv: allocate buffer in a safe way

Ensure that the calculation of size of array doesn't
overflow.

Security: FreeBSD-24:09.libnv
Security: CVE-2024-45287
Security: CAP-02
Reported by: Synacktiv
Reported by: Taylor R Campbell (NetBSD)
Sponsored by: The Alpha-Omega Project
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D46131

(cherry picked from commit 36fa90dbde0060aacb5677d0b113ee168e839071)
(cherry picked from commit 371af89975e3edd1e9f57aa5efba2598b63c0d2d)

Approved by: so

Details

Provenance
oshogboAuthored on Aug 26 2024, 6:10 PM
emasteCommitted on Sep 4 2024, 8:48 PM
Differential Revision
Restricted Differential Revision
Parents
rGd94dbaa516e0: calendar: don't setlogin(2) in the -a user handlers
Branches
Unknown
Tags
Unknown

Changes (2)

PathSize
sys/
contrib/
libnv/

rG69d50af527c0

View Options

sys/contrib/libnv/bsd_nvpair.c

Loading...
View Options

sys/contrib/libnv/nvlist.c

Loading...