Re: [PATCH 0/2] Fix Coverity untrusted loop bound bugs in jpeg.c

grub-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 0/2] Fix Coverity untrusted loop bound bugs in jpeg.c

From:	Daniel Kiper
Subject:	Re: [PATCH 0/2] Fix Coverity untrusted loop bound bugs in jpeg.c
Date:	Fri, 21 Oct 2022 14:02:12 +0200

On Thu, Oct 20, 2022 at 05:11:12PM -0400, Alec Brown wrote:
> In grub-core/video/readers/jpeg.c, Coverity identified an untrusted loop bound
> bug. After resolving this bug, a private Coverity scan identified another
> untrusted loop bound bug in a different function. Since this bug only shows up
> after resolving the first bug, there isn't a CID for the second bug.
>
> The Coverity bugs being addressed are:
> CID 292450
>
> Alec Brown (2):
>       video/readers: Add artificial limit to image dimensions
>       video/readers/jpeg: Check next_marker is within file size

Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com> for both...

Thank you for fixing these issues!

Daniel

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 0/2] Fix Coverity untrusted loop bound bugs in jpeg.c, Alec Brown, 2022/10/20
- [PATCH 2/2] video/readers/jpeg: Check next_marker is within file size, Alec Brown, 2022/10/20
  - Re: [PATCH 2/2] video/readers/jpeg: Check next_marker is within file size, Daniel Axtens, 2022/10/21
    - Re: [External] : Re: [PATCH 2/2] video/readers/jpeg: Check next_marker is within file size, Alec Brown, 2022/10/26
- [PATCH 1/2] video/readers: Add artificial limit to image dimensions, Alec Brown, 2022/10/20
- Re: [PATCH 0/2] Fix Coverity untrusted loop bound bugs in jpeg.c, Daniel Kiper <=

Prev by Date: Re: [PATCH v2] cmp: Only return success when both files have the same contents
Next by Date: Re: [PATCH v5 1/1] Add support for grub-emu to kexec Linux menu entries
Previous by thread: [PATCH 1/2] video/readers: Add artificial limit to image dimensions
Next by thread: Re: [PATCH v7 1/1] plainmount: Support plain encryption mode
Index(es):
- Date
- Thread