Skip to content
Commit 4f8c9402 authored by Rustam Kovhaev's avatar Rustam Kovhaev Committed by Linus Torvalds
Browse files

ntfs: add check for mft record size in superblock 



Number of bytes allocated for mft record should be equal to the mft record
size stored in ntfs superblock as reported by syzbot, userspace might
trigger out-of-bounds read by dereferencing ctx->attr in ntfs_attr_find()

Reported-by: default avatar <syzbot+aed06913f36eff9b544e@syzkaller.appspotmail.com>
Signed-off-by: default avatarRustam Kovhaev <rkovhaev@gmail.com>
Signed-off-by: default avatarAndrew Morton <akpm@linux-foundation.org>
Tested-by: default avatar <syzbot+aed06913f36eff9b544e@syzkaller.appspotmail.com>
Acked-by: default avatarAnton Altaparmakov <anton@tuxera.com>
Link: https://syzkaller.appspot.com/bug?extid=aed06913f36eff9b544e
Link: https://lkml.kernel.org/r/20200824022804.226242-1-rkovhaev@gmail.com


Signed-off-by: default avatarLinus Torvalds <torvalds@linux-foundation.org>
parent d72e720a
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment