Skip to content
Commit a156c47e authored by Simon Goldschmidt's avatar Simon Goldschmidt Committed by Tom Rini
Browse files

tftp: prevent overwriting reserved memory 



This fixes CVE-2018-18439 ("insufficient boundary checks in network
image boot") by using lmb to check for a valid range to store
received blocks.

Signed-off-by: default avatarSimon Goldschmidt <simon.k.r.goldschmidt@gmail.com>
Acked-by: default avatarJoe Hershberger <joe.hershberger@ni.com>
[trini: Always build lib/lmb.o on LMB and lib/fdtdec.o on OF_LIBFDT]
Signed-off-by: default avatarTom Rini <trini@konsulko.com>
parent a85c213f
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment