projects / grub2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f42f723) | patch
kern/disk: Limit recursion depth
authorB Horn <b@horn.uk>
Sun, 12 May 2024 03:09:24 +0000 (04:09 +0100)
committerMiao Wang <shankerwangmiao@gmail.com>
Sun, 15 Feb 2026 13:50:20 +0000 (13:50 +0000)
commit7416dd3460060642f877ba9d87d09429098b173e
treeaeb3d6908fd76c2dcb8341241e62a06516830681tree | snapshot
parentf42f7235cad2f01f4a469b99c30c2a9e2c4bd839commit | diff
kern/disk: Limit recursion depth

The grub_disk_read() may trigger other disk reads, e.g. via loopbacks.
This may lead to very deep recursion which can corrupt the heap. So, fix
the issue by limiting reads depth.

Reported-by: B Horn <b@horn.uk>
Signed-off-by: B Horn <b@horn.uk>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
Gbp-Pq: Topic cve-2025-jan
Gbp-Pq: Name kern-disk-Limit-recursion-depth.patch
grub-core/kern/disk.c diff | blob | history
include/grub/err.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.