forked from pool/syslinux
- fix memory corruption due to wrong fs cache initialisation (bnc #884181)
OBS-URL: https://build.opensuse.org/package/show/system:install:head/syslinux?expand=0&rev=66
This commit is contained in:
parent
ee5e8f19ed
commit
122fae58a8
36
syslinux-4.04-cache_fix.diff
Normal file
36
syslinux-4.04-cache_fix.diff
Normal file
@ -0,0 +1,36 @@
|
||||
commit 0a0e0e41cad93cd16c323cf16f40264a21eedd6c
|
||||
Author: H. Peter Anvin <hpa@zytor.com>
|
||||
Date: Thu Jul 19 07:29:55 2012 -0700
|
||||
|
||||
Correct initialization of the cache doubly-linked list
|
||||
|
||||
The initialization of the cache doubly-linked list had
|
||||
head->next->prev instead of head->prev->next; this entry is supposed
|
||||
to initialize the ->next entry of the last entry in the list (which
|
||||
points back to the head node.)
|
||||
|
||||
For clarity, consistently use "head" to refer to the head node; the
|
||||
mixing of "head" and "dev->cache_head" needlessly obfuscated the code.
|
||||
|
||||
The wild pointer reference caused crashes on some systems.
|
||||
|
||||
Reported-by: Jan Safrata <jsafrata@centrum.cz>
|
||||
Signed-off-by: H. Peter Anvin <hpa@zytor.com>
|
||||
|
||||
diff --git a/core/fs/cache.c b/core/fs/cache.c
|
||||
index 0d7891b..3b21fc2 100644
|
||||
--- a/core/fs/cache.c
|
||||
+++ b/core/fs/cache.c
|
||||
@@ -37,10 +37,10 @@ void cache_init(struct device *dev, int block_size_shift)
|
||||
|
||||
dev->cache_head = head = (struct cache *)
|
||||
(data + (dev->cache_entries << block_size_shift));
|
||||
- cache = dev->cache_head + 1; /* First cache descriptor */
|
||||
+ cache = head + 1; /* First cache descriptor */
|
||||
|
||||
head->prev = &cache[dev->cache_entries-1];
|
||||
- head->next->prev = dev->cache_head;
|
||||
+ head->prev->next = head;
|
||||
head->block = -1;
|
||||
head->data = NULL;
|
||||
|
@ -1,3 +1,8 @@
|
||||
-------------------------------------------------------------------
|
||||
Mon Aug 11 15:51:11 CEST 2014 - snwint@suse.de
|
||||
|
||||
- fix memory corruption due to wrong fs cache initialisation (bnc #884181)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Mar 21 13:10:04 CET 2014 - snwint@suse.de
|
||||
|
||||
|
@ -49,6 +49,7 @@ Patch11: %{name}-%{version}-localboot.diff
|
||||
Patch12: %{name}-%{version}-geometry.diff
|
||||
Patch13: %{name}-%{version}-nostrip.diff
|
||||
Patch14: %{name}-%{version}-timeout.diff
|
||||
Patch15: %{name}-%{version}-cache_fix.diff
|
||||
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
||||
|
||||
%description
|
||||
@ -79,6 +80,7 @@ Authors:
|
||||
%patch12 -p1
|
||||
%patch13 -p0
|
||||
%patch14 -p1
|
||||
%patch15 -p1
|
||||
|
||||
%build
|
||||
cp %{SOURCE2} .
|
||||
|
Loading…
Reference in New Issue
Block a user