tablet/grub
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
10,290 Commits 1 Branch 0 Tags 49 MiB
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Glenn Washburn 980cffdbb0 cryptodisk: Fix Coverity use after free bug 
The Coverity output is:

  *** CID 366905:  Memory - illegal accesses  (USE_AFTER_FREE)
  /grub-core/disk/cryptodisk.c: 1064 in grub_cryptodisk_scan_device_real()
  1058      cleanup:
  1059       if (askpass)
  1060         {
  1061           cargs->key_len = 0;
  1062           grub_free (cargs->key_data);
  1063         }
  >>>     CID 366905:  Memory - illegal accesses  (USE_AFTER_FREE)
  >>>     Using freed pointer "dev".
  1064       return dev;
  1065     }
  1066
  1067     #ifdef GRUB_UTIL
  1068     #include <grub/util/misc.h>
  1069     grub_err_t

Here the "dev" variable can point to a freed cryptodisk device if the
function grub_cryptodisk_insert() fails. This can happen only on a OOM
condition, but when this happens grub_cryptodisk_insert() calls grub_free on
the passed device. Since grub_cryptodisk_scan_device_real() assumes that
grub_cryptodisk_insert() is always successful, it will return the device,
though the device was freed.

Change grub_cryptodisk_insert() to not free the passed device on failure.
Then on grub_cryptodisk_insert() failure, free the device pointer. This is
done by going to the label "error", which will call cryptodisk_close() to
free the device and set the device pointer to NULL, so that a pointer to
freed memory is not returned.

Fixes: CID 366905

Signed-off-by: Glenn Washburn <development@efficientek.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
2022-02-07 20:15:26 +01:00
asm-tests
asm-tests/i386-pc: Check that movl is 5 bytes.
2016-09-28 20:31:04 +03:00
conf
gnulib/regcomp: Fix uninitialized re_token
2021-03-02 15:54:16 +01:00
docs
cryptodisk: Refactor password input out of crypto dev modules into cryptodisk
2021-12-23 02:16:33 +01:00
grub-core
cryptodisk: Fix Coverity use after free bug
2022-02-07 20:15:26 +01:00
include
mm: Document GRUB internal memory management structures
2021-12-23 02:57:30 +01:00
po
po: Fix replacement of %m in sed programs
2020-03-10 21:32:09 +01:00
tests
tests: Refactor building xorriso command for iso9660 tests
2021-12-23 02:37:35 +01:00
themes/starfield
Starfield theme.
2012-02-23 17:21:38 +01:00
unicode
* unicode: Import Unicode 6.0 data.
2011-12-25 16:17:25 +01:00
util
grub-mkconfig: Restore umask for the grub.cfg
2021-12-23 01:43:59 +01:00
.gitattributes
gitattributes: Mark po/exclude.pot as binary so git won't try to diff nonprintables
2019-09-23 13:17:15 +02:00
.gitignore
gitignore: Add a few forgotten file patterns
2020-05-15 15:06:21 +02:00
.travis.yml
travis: Run bootstrap to fix build
2020-09-18 22:31:30 +02:00
acinclude.m4
kern/efi: Add initial stack protector implementation
2021-03-02 15:54:19 +01:00
AUTHORS
2005-09-03 Yoshinori K. Okuji <okuji@enbug.org>
2005-09-03 16:54:27 +00:00
autogen.sh
autogen.sh: Detect python
2021-09-06 17:00:53 +02:00
bootstrap
gnulib: Upgrade Gnulib and switch to bootstrap tool
2019-03-05 10:48:12 +01:00
bootstrap.conf
bootstrap: Require GNU patch
2021-09-06 16:31:38 +02:00
BUGS
* BUGS: New file.
2011-01-11 00:06:01 +01:00
ChangeLog-2015
Autogenerate ChangeLog from git changelog.
2015-01-24 17:29:50 +01:00
config.h.in
Remove libgcc dependency.
2015-03-03 20:50:37 +01:00
configure.ac
configure: Fix misspelled variable BUILD_LDFAGS -> BUILD_LDFLAGS
2021-12-23 01:45:10 +01:00
COPYING
2007-07-22 Yoshinori K. Okuji <okuji@enbug.org>
2007-07-21 23:32:33 +00:00
coreboot.cfg
* coreboot.cfg: Add missing file.
2013-11-20 00:52:23 +01:00
geninit.sh
automake commit without merge history
2010-05-06 11:34:04 +05:30
gentpl.py
build: Fix GRUB i386-pc build with Ubuntu gcc
2020-03-31 12:17:02 +02:00
INSTALL
docs: Add documentation on packages for building documentation
2021-12-23 00:59:47 +01:00
linguas.sh
linguas: Don't skip ko.po.
2017-02-04 00:06:57 +01:00
MAINTAINERS
SECURITY: Add SECURITY file
2021-06-08 14:24:34 +02:00
Makefile.am
Makefile: Make libgrub.pp depend on config-util.h
2020-03-10 21:39:53 +01:00
Makefile.util.def
Makefile: Remove unused GRUB_PKGLIBDIR definition
2020-10-30 21:53:00 +01:00
NEWS
Release 2.06
2021-06-08 16:28:15 +02:00
README
SECURITY: Add SECURITY file
2021-06-08 14:24:34 +02:00
SECURITY
SECURITY: Add SECURITY file
2021-06-08 14:24:34 +02:00
THANKS
2009-12-11 Robert Millan <rmh.grub@aybabtu.com>
2009-12-11 22:44:47 +00:00
TODO
TODO: Remove obsolete link
2016-02-12 17:51:52 +01:00

README 

This is GRUB 2, the second version of the GRand Unified Bootloader.
GRUB 2 is rewritten from scratch to make GNU GRUB cleaner, safer, more
robust, more powerful, and more portable.

See the file NEWS for a description of recent changes to GRUB 2.

See the file INSTALL for instructions on how to build and install the
GRUB 2 data and program files.

See the file MAINTAINERS for information about the GRUB maintainers, etc.

If you found a security vulnerability in the GRUB please check the SECURITY
file to get more information how to properly report this kind of bugs to
the maintainers.

Please visit the official web page of GRUB 2, for more information.
The URL is <http://www.gnu.org/software/grub/grub.html>.

More extensive documentation is available in the Info manual,
accessible using 'info grub' after building and installing GRUB 2.

There are a number of important user-visible differences from the
first version of GRUB, now known as GRUB Legacy. For a summary, please
see:

  info grub Introduction 'Changes from GRUB Legacy'
Description
No description provided
Readme
Languages
C 82.5%
Assembly 13.6%
M4 1.4%
Shell 1.3%
Makefile 0.5%
Other 0.5%