shinys000114/linux
1
0
Fork 0
mirror of https://github.com/hardkernel/linux.git synced 2026-04-02 11:13:02 +09:00
Code Issues Packages Projects Releases Wiki Activity
Files
dd9efcb7ea01fc5be28010eadf18d73c8edb2aa1
linux/fs
History
Bernd Edlinger 1fa0885057 kernfs: Fix range checks in kernfs_get_target_path 
[ Upstream commit a75e78f21f ]

The terminating NUL byte is only there because the buffer is
allocated with kzalloc(PAGE_SIZE, GFP_KERNEL), but since the
range-check is off-by-one, and PAGE_SIZE==PATH_MAX, the
returned string may not be zero-terminated if it is exactly
PATH_MAX characters long.  Furthermore also the initial loop
may theoretically exceed PATH_MAX and cause a fault.

Signed-off-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
Acked-by: Tejun Heo <tj@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2023-05-15 15:09:25 +09:00
..
9p
9p: avoid attaching writeback_fid on mmap with type PRIVATE
2023-05-15 14:47:49 +09:00
adfs
fs/adfs: super: fix use-after-free bug
2023-05-15 14:09:05 +09:00
affs
affs_lookup(): close a race with affs_remove_link()
2018-05-30 07:50:16 +02:00
afs
ANDROID: fs: afs: fix filler function type
2018-03-02 13:27:23 -08:00
autofs4
autofs: fix error return in autofs_fill_super()
2023-05-15 11:50:43 +09:00
befs
Merge tag 'befs-v4.9-rc1' of git://github.com/luisbg/linux-befs
2016-10-15 12:09:13 -07:00
bfs
bfs: add sanity check at bfs_fill_super()
2023-05-15 09:57:32 +09:00
btrfs
btrfs: block-group: Fix a memory leak due to missing btrfs_put_block_group()
2023-05-15 14:50:59 +09:00
cachefiles
fscache, cachefiles: remove redundant variable 'cache'
2023-05-15 10:31:46 +09:00
ceph
ceph: fix use-after-free in __ceph_remove_cap()
2023-05-15 14:57:57 +09:00
cifs
cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs
2023-05-15 14:57:06 +09:00
coda
coda: add error handling for fget
2023-05-15 14:09:19 +09:00
configfs
configfs: fix a deadlock in configfs_symlink()
2023-05-15 14:58:21 +09:00
cramfs
Cramfs: fix abad comparison when wrap-arounds occur
2023-05-15 09:23:12 +09:00
crypto
fscrypt: don't set policy for a dead directory
2023-05-15 13:58:33 +09:00
debugfs
debugfs: fix use-after-free on symlink traversal
2023-05-15 12:38:42 +09:00
devpts
fs/devpts: always delete dcache dentry-s in dput()
2023-05-15 12:05:59 +09:00
dlm
dlm: Don't swamp the CPU with callbacks queued during recovery
2023-05-15 11:22:15 +09:00
ecryptfs
ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable either
2023-05-15 15:07:40 +09:00
efivarfs
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2016-10-10 20:16:43 -07:00
efs
fs/efs/super.c: fix return value
2016-05-20 17:58:30 -07:00
exfat
Amlogic: sync the code from mainline. [1/1]
2020-02-04 13:48:58 +09:00
exofs
fs/exofs: fix potential memory leak in mount option parsing
2023-05-15 09:51:17 +09:00
exportfs
exportfs: do not read dentry after free
2023-05-15 10:31:15 +09:00
ext2
ext2: Fix underflow in ext2_max_size()
2023-05-15 12:06:08 +09:00
ext4
ext4: fix punch hole for inline_data file systems
2023-05-15 14:35:03 +09:00
f2fs
f2fs: fix invalid memory access
2023-05-15 08:58:11 +09:00
fat
fat: work around race with userspace's read via blockdev while mounting
2023-05-15 14:41:16 +09:00
freevxfs
freevxfs: update Kconfig information
2016-06-13 10:20:39 +02:00
fscache
fscache: fix race between enablement and dropping of object
2023-05-15 10:31:45 +09:00
fuse
fuse: truncate pending writes on O_TRUNC
2023-05-15 14:55:32 +09:00
gfs2
gfs2: Don't set GFS2_RDF_UPTODATE when the lvb is updated
2023-05-15 15:08:02 +09:00
hfs
hfs: do not free node before using
2023-05-15 10:31:48 +09:00
hfsplus
hfsplus: do not free node before using
2023-05-15 10:31:49 +09:00
hostfs
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2016-10-10 20:16:43 -07:00
hpfs
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2016-10-10 20:16:43 -07:00
hugetlbfs
hugetlb: use same fault hash key for shared and private mappings
2023-05-15 12:59:23 +09:00
isofs
isofs: fix timestamps beyond 2027
2017-11-30 08:39:04 +00:00
jbd2
jbd2: check superblock mapped prior to committing
2023-05-15 12:51:37 +09:00
jffs2
jffs2: fix use-after-free on symlink traversal
2023-05-15 12:38:40 +09:00
jfs
jfs: Fix inconsistency between memory allocation and ea_buf->max_size
2023-05-12 16:46:26 +09:00
kernfs
kernfs: Fix range checks in kernfs_get_target_path
2023-05-15 15:09:25 +09:00
lockd
lockd: fix access beyond unterminated strings in prints
2023-05-15 09:22:56 +09:00
logfs
ANDROID: fs: logfs: fix filler function type
2018-03-02 13:27:29 -08:00
minix
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2016-10-10 20:16:43 -07:00
ncpfs
ncpfs: fix build warning of strncpy
2023-05-15 11:49:44 +09:00
nfs
NFSv4: Don't allow a cached open with a revoked delegation
2023-05-15 14:59:09 +09:00
nfs_common
lockd: fix "list_add double add" caused by legacy signal interface
2018-02-03 17:05:38 +01:00
nfsd
nfsd: Fix overflow causing non-working mounts on 1 TB machines
2023-05-15 14:05:54 +09:00
nilfs2
do d_instantiate/unlock_new_inode combinations safely
2018-05-30 07:50:16 +02:00
nls
notify
fanotify: fix handling of events on child sub-directory
2023-05-15 11:16:44 +09:00
ntfs
fs: remove the never implemented aio_fsync file operation
2016-10-30 13:09:42 -04:00
ocfs2
fs: ocfs2: fix a possible null-pointer dereference in ocfs2_info_scan_inode_alloc()
2023-05-15 14:55:19 +09:00
omfs
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2016-10-10 20:16:43 -07:00
openpromfs
fs: Replace CURRENT_TIME with current_time() for inode timestamps
2016-09-27 21:06:21 -04:00
orangefs
orangefs: off by ones in xattr size checks
2023-05-15 09:12:19 +09:00
overlayfs
ovl: filter of trusted xattr results in audit
2023-05-15 14:34:51 +09:00
proc
coredump: fix race condition between mmget_not_zero()/get_task_mm() and core dumping
2023-05-15 14:09:41 +09:00
pstore
pstore/ram: Do not treat empty buffers as valid
2023-05-15 11:05:08 +09:00
qnx4
more trivial ->iterate_shared conversions
2016-05-09 11:41:14 -04:00
qnx6
more trivial ->iterate_shared conversions
2016-05-09 11:41:14 -04:00
quota
fs/quota: Fix spectre gadget in do_quotactl
2023-05-12 17:24:57 +09:00
ramfs
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2016-10-10 20:16:43 -07:00
reiserfs
reiserfs: propagate errors from fill_with_dentries() properly
2023-05-15 09:51:08 +09:00
romfs
romfs: use different way to generate fsid for BLOCK or MTD
2017-06-17 06:41:56 +02:00
sdcardfs
sdcardfs: revert because compile fail [1/1]
2020-12-17 17:32:09 +09:00
squashfs
squashfs metadata 2: electric boogaloo
2023-05-12 17:14:36 +09:00
sysfs
scsi: sysfs: Introduce sysfs_{un,}break_active_protection()
2023-05-12 17:16:51 +09:00
sysv
sysv: return 'err' instead of 0 in __sysv_write_inode
2023-05-15 10:31:02 +09:00
tracefs
fs: Replace CURRENT_TIME with current_time() for inode timestamps
2016-09-27 21:06:21 -04:00
ubifs
ubifs: Handle re-linking of inodes correctly while recovery
2023-05-15 10:45:32 +09:00
udf
udf: Fix incorrect final NOT_ALLOCATED (hole) extent length
2023-05-15 13:58:25 +09:00
ufs
ufs: fix braino in ufs_get_inode_gid() for solaris UFS flavour
2023-05-15 12:53:34 +09:00
xfs
xfs: Correctly invert xfs_buftarg LRU isolation logic
2023-05-15 14:56:28 +09:00
aio.c
aio: fix spectre gadget in lookup_ioctx
2023-05-15 10:36:26 +09:00
anon_inodes.c
attr.c
ANDROID: vfs: Add permission2 for filesystems with per mount permissions
2017-01-31 10:47:22 -08:00
bad_inode.c
bad_inode: add missing i_op initializers
2017-01-09 08:32:24 +01:00
binfmt_aout.c
fs: fix binfmt_aout.c build error
2016-05-28 16:34:59 -07:00
binfmt_elf_fdpic.c
elf_fdpic_transfer_args_to_stack(): make it generic
2016-07-25 16:51:49 +10:00
binfmt_elf.c
binfmt_elf: Respect error return from `regset->active'
2023-05-15 08:20:48 +09:00
binfmt_em86.c
fs/binfmt_em86.c: fix incompatible pointer type
2016-08-02 19:35:15 -04:00
binfmt_flat.c
fs/binfmt_flat.c: make load_flat_shared_library() work
2023-05-15 13:55:59 +09:00
binfmt_misc.c
fs/binfmt_misc.c: do not allow offset overflow
2018-06-26 08:08:09 +08:00
binfmt_script.c
exec: load_script: Do not exec truncated interpreter path
2023-05-15 14:54:58 +09:00
block_dev.c
blockdev: Fix livelocks on loop device
2023-05-15 11:01:39 +09:00
buffer.c
fs: fix guard_bio_eod to check for real EOD errors
2023-05-15 12:16:57 +09:00
char_dev.c
chardev: add additional check for minor range overlap
2023-05-15 13:35:49 +09:00
compat_binfmt_elf.c
binfmt_elf: compat: avoid unused function warning
2018-02-25 11:05:55 +01:00
compat_ioctl.c
media: dvb: fix compat ioctl translation
2023-05-15 15:08:57 +09:00
compat.c
compat: remove compat_printk()
2016-09-27 21:20:53 -04:00
coredump.c
Merge 4.9.36 into android-4.9
2017-07-05 16:18:14 +02:00
dax.c
fs/dax.c: fix inefficiency in dax_writeback_mapping_range()
2018-02-28 10:18:33 +01:00
dcache.c
Hang/soft lockup in d_invalidate with simultaneous calls
2023-05-15 12:07:04 +09:00
dcookies.c
direct-io.c
direct-io: allow direct writes to empty inodes
2023-05-15 11:45:37 +09:00
drop_caches.c
fs/drop_caches.c: avoid softlockups in drop_pagecache_sb()
2023-05-15 11:50:41 +09:00
eventfd.c
eventfd: document lockless access in eventfd_poll
2016-03-22 15:36:02 -07:00
eventpoll.c
fs/epoll: drop ovflist branch prediction
2023-05-15 11:23:40 +09:00
exec.c
sched/fair: Don't free p->numa_faults with concurrent readers
2023-05-15 14:08:49 +09:00
fcntl.c
fs/fcntl: f_setown, avoid undefined behaviour
2018-01-31 12:55:52 +01:00
fhandle.c
fs/coredump: prevent fsuid=0 dumps into user-controlled directories
2016-03-22 15:36:02 -07:00
file_table.c
fs, file table: reinit files_stat.max_files after deferred memory initialisation
2015-08-07 04:39:40 +03:00
file.c
fs/file.c: initialize init_files.resize_wait
2023-05-15 12:16:54 +09:00
filesystems.c
find_filesystem(): simplify comparison
2016-01-19 12:02:23 -05:00
fs_pin.c
fs_struct.c
ANDROID: fs: Export free_fs_struct and set_fs_pwd
2017-01-31 15:46:26 -08:00
fs-writeback.c
cgroup,writeback: don't switch wbs immediately on dead wbs if the memcg is dead
2023-05-15 14:59:25 +09:00
inode.c
Abort file_remove_privs() for non-reg. files
2023-05-15 13:50:14 +09:00
internal.h
Merge 4.9.51 into android-4.9
2017-09-20 09:59:51 +02:00
ioctl.c
vfs: cap dedupe request structure size at PAGE_SIZE
2016-09-15 13:29:52 -07:00
iomap.c
iomap: fix integer truncation issues in the zeroing and dirtying helpers
2017-09-20 08:19:59 +02:00
Kconfig
fs: add exfat file system support
2017-09-26 00:32:37 -07:00
Kconfig.binfmt
ARM: 8594/1: enable binfmt_flat on systems with an MMU
2016-08-12 16:47:05 +01:00
libfs.c
Fix the locking in dcache_readdir() and friends
2023-05-15 14:49:42 +09:00
locks.c
locking, fs/locks: Add missing file_sem locks
2016-10-18 12:21:28 +02:00
Makefile
fs: add exfat file system support
2017-09-26 00:32:37 -07:00
mbcache.c
mbcache: initialize entry->e_referenced in mb_cache_entry_create()
2018-02-22 15:43:48 +01:00
mount.h
mnt: In propgate_umount handle visiting mounts in any order
2017-07-21 07:42:22 +02:00
mpage.c
mm: optimize stack usage for functions [1/1]
2018-12-17 17:21:59 +08:00
namei.c
namei: allow restricted O_CREAT of FIFOs and regular files
2023-05-15 09:59:20 +09:00
namespace.c
mount: Prevent MNT_DETACH from disconnecting locked mounts
2023-05-15 09:27:37 +09:00
no-block.c
nsfs.c
nsfs: mark dentry with DCACHE_RCUACCESS
2018-02-17 13:21:15 +01:00
open.c
access: avoid the RCU grace period for the temporary subjective credentials
2023-05-15 14:08:33 +09:00
pipe.c
fs: prevent page refcount overflow in pipe_buf_get
2023-05-15 13:40:35 +09:00
pnode.c
Merge 4.9.39 into android-4.9
2017-07-21 08:55:50 +02:00
pnode.h
mnt: Tuck mounts under others instead of creating shadow/side mounts.
2017-03-15 02:21:16 +00:00
posix_acl.c
tmpfs: clear S_ISGID when setting posix ACLs
2017-01-26 08:24:37 +01:00
proc_namespace.c
ANDROID: vfs: Allow filesystems to access their private mount data
2017-01-31 10:47:20 -08:00
read_write.c
fs: stream_open - opener for stream-like files so that read and write can run simultaneously without deadlock
2023-05-15 13:41:13 +09:00
readdir.c
restore killability of old mutex_lock_killable(&inode->i_mutex) users
2016-05-26 00:13:25 -04:00
select.c
fs/select: add vmalloc fallback for select(2)
2016-10-11 15:06:30 -07:00
seq_file.c
seq/proc: modify seq_put_decimal_[u]ll to take a const char *, not char
2016-10-07 18:46:30 -07:00
signalfd.c
signalfd: fix information leak in signalfd_copyinfo
2015-08-07 04:39:40 +03:00
splice.c
fs: prevent page refcount overflow in pipe_buf_get
2023-05-15 13:40:35 +09:00
stack.c
stat.c
ufs: restore maintaining ->i_blocks
2017-06-14 15:06:01 +02:00
statfs.c
super.c
fs: don't scan the inode cache before SB_BORN is set
2023-05-15 11:16:43 +09:00
sync.c
ANDROID: sched: add a counter to track fsync
2017-03-14 13:16:06 -07:00
timerfd.c
timerfd: Protect the might cancel mechanism proper
2017-05-08 07:47:54 +02:00
userfaultfd.c
userfaultfd_release: always remove uffd flags and clear vm_userfaultfd_ctx
2023-05-15 14:21:05 +09:00
utimes.c
ANDROID: vfs: Add setattr2 for filesystems with per mount permissions
2017-01-31 10:47:21 -08:00
xattr.c
sysfs: Do not return POSIX ACL xattrs via listxattr
2023-05-15 08:34:19 +09:00