[Saucy][Trusty][CVE-2014-4611][PATCH 0/1] lz4: ensure length does not wrap
Brad Figg
brad.figg at canonical.com
Fri Jun 27 16:56:44 UTC 2014
WARNING:
The buglink is missing in these patches! Whoever is applying
the patches, please wait for the buglink to be provided!
CVE-2014-2611
Given some pathologically compressed data, lz4 could possibly decide to
wrap a few internal variables, causing unknown things to happen. Catch
this before the wrapping happens and abort the decompression.
This is a clean cherry-pick of the upstream commit.
Greg Kroah-Hartman (1):
lz4: ensure length does not wrap
lib/lz4/lz4_decompress.c | 2 ++
1 file changed, 2 insertions(+)
--
1.9.1
More information about the kernel-team
mailing list