HomeFreeBSD
Diffusion FreeBSD src repository fd4ee5b9eabf

libnv: allocate buffer in a safe way
fd4ee5b9eabf
Actions

Description

libnv: allocate buffer in a safe way

Ensure that the calculation of size of array doesn't
overflow.

Security: FreeBSD-24:09.libnv
Security: CVE-2024-45287
Security: CAP-02
Reported by: Synacktiv
Reported by: Taylor R Campbell (NetBSD)
Sponsored by: The Alpha-Omega Project
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D46131

(cherry picked from commit 36fa90dbde0060aacb5677d0b113ee168e839071)
(cherry picked from commit 2e7f9244ebefe019ef016a3a5b47c4562850d1c2)

Approved by: so

Details

Provenance
oshogboAuthored on Aug 26 2024, 6:10 PM
emasteCommitted on Wed, Sep 4, 8:28 PM
Differential Revision
Restricted Differential Revision
Parents
rGeab94c0fbb78: calendar: don't setlogin(2) in the -a user handlers
Branches
Unknown
Tags
Unknown

Event Timeline

emaste committed rGfd4ee5b9eabf: libnv: allocate buffer in a safe way (authored by oshogbo).Wed, Sep 4, 8:28 PM
emaste added an edge: Restricted Differential Revision.

Changes (2)

PathSize
sys/
contrib/
libnv/

rGfd4ee5b9eabf

View Options

sys/contrib/libnv/bsd_nvpair.c

Loading...
View Options

sys/contrib/libnv/nvlist.c

Loading...