[PATCH] fat: Read buffer overflow

From: Roel Kluin
Date: Fri Aug 07 2009 - 18:44:42 EST

Next message: Ron: "[PATCH] [ARM] Kirkwood: Initialise SATA for OpenRD-Base"
Previous message: Ricardo Jorge da Fonseca Marques Ferreira: "Regression in ACPI in 2.6.31-rc5"
Next in thread: OGAWA Hirofumi: "Re: [PATCH] fat: Read buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

If len is less or equal to 0, this results in a read of s[-1].

Signed-off-by: Roel Kluin <roel.kluin@xxxxxxxxx>
---
diff --git a/fs/fat/namei_vfat.c b/fs/fat/namei_vfat.c
index 6f27853..114ff6d 100644
--- a/fs/fat/namei_vfat.c
+++ b/fs/fat/namei_vfat.c
@@ -202,6 +202,9 @@ static inline int vfat_is_used_badchars(const wchar_t *s, int len)
{
int i;

+ if (len <= 0)
+ return -EINVAL;
+
for (i = 0; i < len; i++)
if (vfat_bad_char(s[i]))
return -EINVAL;
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ron: "[PATCH] [ARM] Kirkwood: Initialise SATA for OpenRD-Base"
Previous message: Ricardo Jorge da Fonseca Marques Ferreira: "Regression in ACPI in 2.6.31-rc5"
Next in thread: OGAWA Hirofumi: "Re: [PATCH] fat: Read buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]