On Sun, Jun 01, 2025 at 10:52:22AM -0500, Andrew Hamilton wrote: > Improved ad-hoc fuzzing coverage releaved a possible access violation > around line 342 of ntfs.c when accessing the attr_cur pointer due to > possiblity of moving pointer 'next' beyond of the end of the valid > buffer inside next_attribute. Prevent this for cases where full > attribute validation is not performed (such as on attribute lists) > by performing a sanity check on the newly calculated next pointer. > > Fixes: 06914b614 (fs/ntfs: Correct attribute vs attribute list validation) > > Signed-off-by: Andrew Hamilton <[email protected]>
Reviewed-by: Daniel Kiper <[email protected]> Daniel _______________________________________________ Grub-devel mailing list [email protected] https://lists.gnu.org/mailman/listinfo/grub-devel
