mirror/u-boot-2016
1
0
Fork 0
mirror of https://git.codelinaro.org/clo/qsdk/oss/boot/u-boot-2016.git synced 2026-03-04 16:34:14 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
37628 commits 309 branches 751 tags 147 MiB
Commit graph

4 commits

Author SHA1 Message Date
Albert Astals Cid
8d1b696b55 lib: bzip2: Make sure nSelectors is not out of range 
nSelectors is used in a loop from 0 to nSelectors to access selectorMtf
which is
	UChar    selectorMtf[BZ_MAX_SELECTORS];
so if nSelectors is bigger than BZ_MAX_SELECTORS it'll do an invalid memory
access

Fixes out of bounds access discovered while fuzzying karchive

This was reported as CVE-2019-12900
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an
out-of-bounds write when there are many selectors.

Change-Id: I536d2fe19d7182d4e51f76a502e8f0e72a2359ea
Signed-off-by: Md Sadre Alam <quic_mdalam@quicinc.com>
 2022-11-08 15:24:53 +05:30
Tom Rini
da58dec866 Various Makefiles: Add SPDX-License-Identifier tags 
After consulting with some of the SPDX team, the conclusion is that
Makefiles are worth adding SPDX-License-Identifier tags too, and most of
ours have one.  This adds tags to ones that lack them and converts a few
that had full (or in one case, very partial) license blobs into the
equivalent tag.

Cc: Kate Stewart <kstewart@linuxfoundation.org>
Signed-off-by: Tom Rini <trini@konsulko.com>
 2015-11-10 09:19:52 -05:00
Simon Glass
362a0e43a3 bzlib: Update destLen even on error 
This allows the caller to easily detect how much of the destination buffer
has been used.

Signed-off-by: Simon Glass <sjg@chromium.org>
 2015-01-14 11:35:44 -05:00
Masahiro Yamada
f071c50190 lib: bzip2: move bzip2 files to lib/bzip2/ directory 
Signed-off-by: Masahiro Yamada <yamada.m@jp.panasonic.com>
 2014-12-08 09:35:47 -05:00