Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 1ecd3c7ea76488c63b4b0a2561fd7eaf96cc8028
commit1ecd3c7ea76488c63b4b0a2561fd7eaf96cc8028[log] [tgz]
authorXi Wang <xi.wang@gmail.com>Wed Feb 08 17:13:37 2012 -0800
committerLinus Torvalds <torvalds@linux-foundation.org>Wed Feb 08 19:03:51 2012 -0800
tree3bc88fd0b4fd61c86141c66e86cf5492753bcd22
parent98e96852480566333f6dacd3223f0be15df34d60 [diff]
nilfs2: avoid overflowing segment numbers in nilfs_ioctl_clean_segments()

nsegs is read from userspace.  Limit its value and avoid overflowing nsegs
* sizeof(__u64) in the subsequent call to memdup_user().

This patch complements 481fe17e973fb9 ("nilfs2: potential integer overflow
in nilfs_ioctl_clean_segments()").

Signed-off-by: Xi Wang <xi.wang@gmail.com>
Cc: Haogang Chen <haogangchen@gmail.com>
Acked-by: Ryusuke Konishi <konishi.ryusuke@lab.ntt.co.jp>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
1 file changed
tree: 3bc88fd0b4fd61c86141c66e86cf5492753bcd22
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS