projects / grub2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2d7b952) | patch
script/execute: Fix potential underflow and NULL dereference
authorLidong Chen <lidong.chen@oracle.com>
Wed, 29 Jan 2025 06:48:37 +0000 (06:48 +0000)
committerMiao Wang <shankerwangmiao@gmail.com>
Sun, 15 Feb 2026 13:50:20 +0000 (13:50 +0000)
commitc38e98f7a86a90cc1983cd93f18f461a80bab515
tree9d15c9db63ad69b81186ce0b07b03e5959af67fetree | snapshot
parent2d7b952fdcc9c110df71c53f93ff1b85b8701e0acommit | diff
script/execute: Fix potential underflow and NULL dereference

The result is initialized to 0 in grub_script_arglist_to_argv().
If the for loop condition is not met both result.args and result.argc
remain 0 causing result.argc - 1 to underflow and/or result.args NULL
dereference. Fix the issues by adding relevant checks.

Fixes: CID 473880
Signed-off-by: Lidong Chen <lidong.chen@oracle.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
Gbp-Pq: Topic cve-2025-jan
Gbp-Pq: Name script-execute-Fix-potential-underflow-and-NULL-dereferen.patch
grub-core/script/execute.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.