Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 3f1368af authored by Jan Kara's avatar Jan Kara Committed by Greg Kroah-Hartman
Browse files

udf: Fix uninitialized array access for some pathnames 



[ Upstream commit 028f6055c912588e6f72722d89c30b401bbcf013 ]

For filenames that begin with . and are between 2 and 5 characters long,
UDF charset conversion code would read uninitialized memory in the
output buffer. The only practical impact is that the name may be prepended a
"unification hash" when it is not actually needed but still it is good
to fix this.

Reported-by: default avatar <syzbot+cd311b1e43cc25f90d18@syzkaller.appspotmail.com>
Link: https://lore.kernel.org/all/000000000000e2638a05fe9dc8f9@google.com


Signed-off-by: default avatarJan Kara <jack@suse.cz>
Signed-off-by: default avatarSasha Levin <sashal@kernel.org>
parent 8f203dd4

fs/udf/unicode.c

+1 −1
Original line number Diff line number Diff line
@@ -247,7 +247,7 @@ static int udf_name_from_CS0(struct super_block *sb, 
	}



	if (translate) {

		if (str_o_len <= 2 && str_o[0] == '.' &&

		if (str_o_len > 0 && str_o_len <= 2 && str_o[0] == '.' &&

		    (str_o_len == 1 || str_o[1] == '.'))

			needsCRC = 1;

		if (needsCRC) {