summaryrefslogtreecommitdiff
path: root/fs/udf/super.c
diff options
context:
space:
mode:
authorJan Kara <jack@suse.cz>2006-08-15 13:56:26 +0200
committerGreg Kroah-Hartman <gregkh@suse.de>2006-08-22 12:52:23 -0700
commit00a2b0f6dd2372842df73de72d51621b539fea44 (patch)
tree1a6978fe89ed18984254ae4b7f3982ace04fcd90 /fs/udf/super.c
parentc164a9ba0a8870c5c9d353f63085319931d69f23 (diff)
downloadlwn-00a2b0f6dd2372842df73de72d51621b539fea44.tar.gz
lwn-00a2b0f6dd2372842df73de72d51621b539fea44.zip
Fix possible UDF deadlock and memory corruption (CVE-2006-4145)
UDF code is not really ready to handle extents larger that 1GB. This is the easy way to forbid creating those. Also truncation code did not count with the case when there are no extents in the file and we are extending the file. Signed-off-by: Jan Kara <jack@suse.cz> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Diffstat (limited to 'fs/udf/super.c')
-rw-r--r--fs/udf/super.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/fs/udf/super.c b/fs/udf/super.c
index 7de172efa084..fcce1a21a51b 100644
--- a/fs/udf/super.c
+++ b/fs/udf/super.c
@@ -1659,7 +1659,7 @@ static int udf_fill_super(struct super_block *sb, void *options, int silent)
iput(inode);
goto error_out;
}
- sb->s_maxbytes = MAX_LFS_FILESIZE;
+ sb->s_maxbytes = 1<<30;
return 0;
error_out: