Kernel/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2025-01-17 02:36:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux-stable/fs
History
Chuck Lever 084f797dbc NFSD: Prevent a potential integer overflow 
commit 7f33b92e5b18e904a481e6e208486da43e4dc841 upstream.

If the tag length is >= U32_MAX - 3 then the "length + 4" addition
can result in an integer overflow. Address this by splitting the
decoding into several steps so that decode_cb_compound4res() does
not have to perform arithmetic on the unsafe length value.

Reported-by: Dan Carpenter <dan.carpenter@linaro.org>
Cc: stable@vger.kernel.org
Reviewed-by: Jeff Layton <jlayton@kernel.org>
Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2024-12-05 13:54:26 +01:00
..
9p
9p: v9fs_fid_find: also lookup by inode if not found dentry
2024-11-17 15:09:50 +01:00
adfs
fs/adfs: add MODULE_DESCRIPTION
2024-07-18 09:50:08 +02:00
affs
affs: struct slink_front: Replace 1-element array with flexible array
2024-07-11 16:14:26 +02:00
afs
afs: Fix lock recursion
2024-11-17 15:09:53 +01:00
autofs
autofs: fix missing fput for FSCONFIG_SET_FD
2024-10-04 16:37:19 +02:00
bcachefs
bcachefs: Don't delete open files in online fsck
2024-09-09 09:41:47 -04:00
befs
befs: Convert befs_symlink_read_folio() to use folio_end_read()
2024-05-31 12:31:39 +02:00
bfs
mm, slab: remove last vestiges of SLAB_MEM_SPREAD
2024-03-12 20:32:19 -07:00
btrfs
btrfs: fix incorrect comparison for delayed refs
2024-11-22 15:39:53 +01:00
cachefiles
cachefiles: Fix NULL pointer dereference in object->file
2024-12-05 13:52:46 +01:00
ceph
ceph: fix cap ref leak via netfs init_request
2024-10-10 12:04:10 +02:00
coda
coda: Convert coda_symlink_filler() to use folio_end_read()
2024-05-31 12:31:39 +02:00
configfs
fs/configfs: Add a callback to determine attribute visibility
2024-06-17 20:42:57 +02:00
cramfs
vfs-6.11.module.description
2024-07-15 11:14:59 -07:00
crypto
The usual shower of singleton fixes and minor series all over MM,
2024-05-19 09:21:03 -07:00
debugfs
debugfs show actual source in /proc/mounts
2024-10-04 16:38:46 +02:00
devpts
dlm
dlm: fix dlm_recover_members refcount on error
2024-12-05 13:53:28 +01:00
ecryptfs
hardening updates for 6.10-rc1
2024-05-13 14:14:05 -07:00
efivarfs
efivarfs: Convert to new uid/gid option parsing helpers
2024-07-02 06:21:18 +02:00
efs
efs: fix the efs new mount api implementation
2024-12-05 13:52:43 +01:00
erofs
erofs: handle NONHEAD !delta[1] lclusters gracefully
2024-12-05 13:53:28 +01:00
exfat
exfat: fix out-of-bounds access of directory entries
2024-12-05 13:54:13 +01:00
exportfs
fhandle: relax open_by_handle_at() permission checks
2024-05-28 15:57:23 +02:00
ext2
ext2: Verify bitmap and itable block numbers before using them
2024-06-26 12:54:11 +02:00
ext4
ext4: fix FS_IOC_GETFSMAP handling
2024-12-05 13:54:08 +01:00
f2fs
f2fs: fix to do sanity check on node blkaddr in truncate_node()
2024-12-05 13:54:26 +01:00
fat
fat: fix uninitialized variable
2024-10-22 15:51:20 +02:00
freevxfs
freevxfs: Convert freevxfs to the new mount API.
2024-03-26 09:04:53 +01:00
fuse
virtiofs: use pages instead of pointer for kernel direct IO
2024-12-05 13:53:48 +01:00
gfs2
gfs2: Fix unlinked inode cleanup
2024-12-05 13:53:45 +01:00
hfs
vfs-6.11.module.description
2024-07-15 11:14:59 -07:00
hfsplus
hfsplus: don't query the device logical block size multiple times
2024-12-05 13:52:47 +01:00
hostfs
vfs-6.11-rc1.fixes.3
2024-07-27 15:11:59 -07:00
hpfs
vfs-6.11.module.description
2024-07-15 11:14:59 -07:00
hugetlbfs
- 875fa64577da ("mm/hugetlb_vmemmap: fix race with speculative PFN
2024-07-21 17:15:46 -07:00
iomap
iomap: turn iomap_want_unshare_iter into an inline function
2024-11-08 16:30:49 +01:00
isofs
isofs: avoid memory leak in iocharset
2024-12-05 13:53:22 +01:00
jbd2
jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit
2024-10-10 12:03:55 +02:00
jffs2
Kbuild updates for v6.11
2024-07-23 14:32:21 -07:00
jfs
jfs: xattr: check invalid xattr size more strictly
2024-12-05 13:54:08 +01:00
kernfs
kernfs: mount: Remove unnecessary ‘NULL’ values from knparent
2024-05-04 19:02:39 +02:00
lockd
lockd: Use *-y instead of *-objs in Makefile
2024-07-08 14:10:03 -04:00
minix
vfs-6.11.module.description
2024-07-15 11:14:59 -07:00
netfs
netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING
2024-12-05 13:52:47 +01:00
nfs
nfs: Fix KMSAN warning in decode_getfattr_attrs()
2024-11-14 13:21:08 +01:00
nfs_common
fs: nfs: add missing MODULE_DESCRIPTION() macros
2024-07-08 13:47:24 -04:00
nfsd
NFSD: Prevent a potential integer overflow
2024-12-05 13:54:26 +01:00
nilfs2
nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
2024-11-22 15:39:53 +01:00
nls
fs: nls: add missing MODULE_DESCRIPTION() macros
2024-06-03 16:37:07 +02:00
notify
fsnotify: Fix ordering of iput() and watched_objects decrement
2024-12-05 13:54:11 +01:00
ntfs3
fs/ntfs3: Sequential field availability check in mi_enum_attr()
2024-11-08 16:31:04 +01:00
ocfs2
ocfs2: fix uninitialized value in ocfs2_file_read_iter()
2024-12-05 13:53:41 +01:00
omfs
openpromfs
openpromfs: add missing MODULE_DESCRIPTION() macro
2024-06-20 09:46:01 +02:00
orangefs
orangefs: Remove calls to set/clear the error flag
2024-05-31 12:31:41 +02:00
overlayfs
fs: pass offset and result to backing_file end_write() callback
2024-11-01 02:02:38 +01:00
proc
fs/proc/kcore.c: fix coccinelle reported ERROR instances
2024-12-05 13:53:38 +01:00
pstore
memblock: updates for 6.11-rc1
2024-07-18 14:48:11 -07:00
qnx4
qnx4: add MODULE_DESCRIPTION()
2024-05-28 11:52:53 +02:00
qnx6
qnx6: add MODULE_DESCRIPTION()
2024-05-28 11:52:49 +02:00
quota
quota: avoid missing put_quota_format when DQUOT_SUSPENDED is passed
2024-10-04 16:38:06 +02:00
ramfs
mm: switch mm->get_unmapped_area() to a flag
2024-04-25 20:56:25 -07:00
reiserfs
reiserfs: Remove call to folio_set_error()
2024-05-31 12:31:41 +02:00
romfs
romfs: fix romfs_read_folio()
2024-08-21 22:32:58 +02:00
smb
smb: During unmount, ensure all cached dir instances drop their dentry
2024-12-05 13:54:24 +01:00
squashfs
Squashfs: sanity check symbolic link size
2024-08-13 13:56:46 +02:00
sysfs
Merge 6.9-rc5 into driver-core-next
2024-04-23 13:27:43 +02:00
sysv
fs: sysv: add MODULE_DESCRIPTION()
2024-05-28 11:52:45 +02:00
tests
execve: Move KUnit tests to tests/ subdirectory
2024-07-22 18:25:47 -07:00
tracefs
tracing: Fix tracefs mount options
2024-11-14 13:21:09 +01:00
ubifs
ubifs: add check for crypto_shash_tfm_digest
2024-07-12 22:01:09 +02:00
udf
udf: fix uninit-value use in udf_get_fileshortad
2024-11-01 02:02:34 +01:00
ufs
- In the series "treewide: Refactor heap related implementation",
2024-07-21 17:56:22 -07:00
unicode
unicode: Fix utf8_load() error path
2024-12-05 13:53:29 +01:00
vboxsf
vfs-6.11.mount.api
2024-07-15 11:31:32 -07:00
verity
bpf: treewide: Align kfunc signatures to prog point-of-view
2024-06-12 11:01:31 -07:00
xfs
xfs: fix finding a last resort AG in xfs_filestream_pick_ag
2024-11-08 16:30:59 +01:00
zonefs
zonefs: enable support for large folios
2024-06-11 11:22:57 +09:00
aio.c
- 875fa64577da ("mm/hugetlb_vmemmap: fix race with speculative PFN
2024-07-21 17:15:46 -07:00
anon_inodes.c
fs: Create anon_inode_getfile_fmode()
2024-04-26 10:33:05 +02:00
attr.c
nfsd-6.11 fixes:
2024-08-29 06:20:44 +12:00
backing-file.c
fs: pass offset and result to backing_file end_write() callback
2024-11-01 02:02:38 +01:00
bad_inode.c
binfmt_elf_fdpic.c
Revert "fs: don't block i_writecount during exec"
2024-12-05 13:54:15 +01:00
binfmt_elf.c
Revert "fs: don't block i_writecount during exec"
2024-12-05 13:54:15 +01:00
binfmt_flat.c
binfmt_flat: Fix corruption when not offsetting data start
2024-08-09 20:19:00 -07:00
binfmt_misc.c
Revert "fs: don't block i_writecount during exec"
2024-12-05 13:54:15 +01:00
binfmt_script.c
fs: binfmt: add missing MODULE_DESCRIPTION() macros
2024-05-28 12:06:51 +02:00
buffer.c
Many cleanups and bug fixes in ext4, especially for the fast commit
2024-07-18 17:03:42 -07:00
char_dev.c
compat_binfmt_elf.c
coredump.c
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
d_path.c
dax.c
fsdax: dax_unshare_iter needs to copy entire blocks
2024-11-08 16:30:49 +01:00
dcache.c
dcache: keep dentry_hashtable or d_hash_shift even when not used
2024-08-30 12:25:50 +12:00
direct-io.c
fs/direct-io: remove redundant assignment to variable retval
2024-04-11 10:21:24 +02:00
drop_caches.c
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
eventfd.c
eventpoll.c
eventpoll: Annotate data-race of busy_poll_usecs
2024-10-04 16:38:50 +02:00
exec.c
Revert "fs: don't block i_writecount during exec"
2024-12-05 13:54:15 +01:00
fcntl.c
fs: Fix file_set_fowner LSM hook inconsistencies
2024-10-04 16:38:50 +02:00
fhandle.c
fhandle: relax open_by_handle_at() permission checks
2024-05-28 15:57:23 +02:00
file_table.c
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
file.c
close_range(): fix the logics in descriptor table trimming
2024-10-10 12:04:11 +02:00
filesystems.c
fs_context.c
fs_parser.c
fs_parse: add uid & gid option option parsing helpers
2024-07-02 06:20:49 +02:00
fs_pin.c
fs_struct.c
fs_types.c
fs-writeback.c
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
fsopen.c
vfs: retire user_path_at_empty and drop empty arg from getname_flags
2024-06-05 17:03:57 +02:00
init.c
inode.c
vfs: use RCU in ilookup
2024-10-10 12:03:15 +02:00
internal.h
vfs-6.11.pidfs
2024-07-15 12:34:01 -07:00
ioctl.c
fs/ioctl: Add a comment to keep the logic in sync with LSM policies
2024-05-13 06:58:35 +02:00
Kconfig
- Sumanth Korikkar has taught s390 to allocate hotplug-time page frames
2024-03-14 17:43:30 -07:00
Kconfig.binfmt
exec: Add KUnit test for bprm_stack_limits()
2024-06-19 13:13:55 -07:00
kernel_read_file.c
libfs.c
libfs: fix get_stashed_dentry()
2024-09-06 11:08:58 -07:00
locks.c
filelock: fix name of file_lease slab cache
2024-08-12 22:03:25 +02:00
Makefile
vfs-6.9.pidfd
2024-03-11 10:21:06 -07:00
mbcache.c
mnt_idmapping.c
mount.h
vfs-6.11.mount
2024-07-15 11:54:04 -07:00
mpage.c
buffer: Remove calls to set and clear the folio error flag
2024-05-31 12:31:43 +02:00
namei.c
vfs: correct the comments of vfs_*() helpers
2024-07-24 10:53:12 +02:00
namespace.c
fs: don't try and remove empty rbtree node
2024-11-01 02:02:41 +01:00
nsfs.c
nsfs: use cleanup guard
2024-07-18 09:50:08 +02:00
open.c
openat2: explicitly return -E2BIG for (usize > PAGE_SIZE)
2024-11-01 02:02:41 +01:00
pidfs.c
pidfs: check for valid pid namespace
2024-10-10 12:04:07 +02:00
pipe.c
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
pnode.c
pnode.h
posix_acl.c
lsm/stable-6.9 PR 20240312
2024-03-12 20:03:34 -07:00
proc_namespace.c
fs: rename show_mnt_opts -> show_vfsmnt_opts
2024-06-28 14:36:43 +02:00
read_write.c
fs/block: Check for IOCB_DIRECT in generic_atomic_write_valid()
2024-12-05 13:52:44 +01:00
readdir.c
readdir: Add missing quote in macro comment
2024-06-03 15:49:26 +02:00
remap_range.c
vfs: export remap and write check helpers
2024-04-15 14:54:13 -07:00
select.c
x86: support user address masking instead of non-speculative conditional
2024-11-01 02:02:44 +01:00
seq_file.c
seq_file: Simplify __seq_puts()
2024-05-02 16:28:20 +02:00
signalfd.c
signalfd: drop an obsolete comment
2024-05-24 13:34:07 +02:00
splice.c
remove call_{read,write}_iter() functions
2024-04-15 16:03:25 -04:00
stack.c
stat.c
for-6.11/block-20240710
2024-07-15 14:20:22 -07:00
statfs.c
super.c
fs/super.c: improve get_tree() error message
2024-08-22 02:07:23 -04:00
sync.c
sysctls.c
timerfd.c
timerfd: convert to ->read_iter()
2024-04-10 16:23:02 -06:00
userfaultfd.c
fork: do not invoke uffd on fork if error occurs
2024-11-08 16:30:58 +01:00
utimes.c
xattr.c
vfs: Fix potential circular locking through setxattr() and removexattr()
2024-07-24 10:53:14 +02:00