Hi all, This patchset fixes several code problems found by fuzzing Ext4Dxe like buffer and integer overflows, memory leaks, logic bugs and so on.
REF: https://github.com/savvamitrofanov/edk2-platforms/tree/master Cc: Marvin Häuser <mhaeu...@posteo.de> Cc: Pedro Falcato <pedro.falc...@gmail.com> Cc: Vitaly Cheptsov <vit9...@protonmail.com> Savva Mitrofanov (12): Ext4Pkg: Fix memory leak in Ext4RetrieveDirent Ext4Pkg: Move EXT4_NAME_MAX definition to Ext4Disk.h Ext4Pkg: Fix global buffer overflow in Ext4ReadDir Ext4Pkg: Fix incorrect checksum metadata feature check Ext4Pkg: Fix division by zero by adding check for s_inodes_per_group Ext4Pkg: Add comparison between Position and FileSize in Ext4SetPosition Ext4Pkg: Add inode number validity check Ext4Pkg: Fix shift out of bounds in Ext4OpenSuperblock Ext4Pkg: Correct integer overflow check on multiplication in DiskUtil Ext4Pkg: Check that source file is directory in Ext4OpenInternal Ext4Pkg: Check VolumeName allocation correctness in Ext4GetVolumeName Ext4Pkg: Add missing exit Status in Ext4OpenDirent Features/Ext4Pkg/Ext4Pkg.dsc | 2 +- Features/Ext4Pkg/Ext4Dxe/Ext4Disk.h | 17 +++++- Features/Ext4Pkg/Ext4Dxe/Ext4Dxe.h | 59 ++++++++++++++++---- Features/Ext4Pkg/Ext4Dxe/BlockGroup.c | 5 ++ Features/Ext4Pkg/Ext4Dxe/Directory.c | 51 ++++++++++------- Features/Ext4Pkg/Ext4Dxe/DiskUtil.c | 8 +-- Features/Ext4Pkg/Ext4Dxe/File.c | 44 ++++++++++----- Features/Ext4Pkg/Ext4Dxe/Inode.c | 2 +- Features/Ext4Pkg/Ext4Dxe/Superblock.c | 16 ++++-- 9 files changed, 147 insertions(+), 57 deletions(-) -- 2.38.1 -=-=-=-=-=-=-=-=-=-=-=- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#97190): https://edk2.groups.io/g/devel/message/97190 Mute This Topic: https://groups.io/mt/95563272/21656 Group Owner: devel+ow...@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
