grub/fs at c4bc55da28543d2522a939ba4ee0acde45f2fa74 - grub - Gitea: Git with a cup of tea.... and pages of fanfiction!

tablet/grub

History

Daniel Axtens c4bc55da28 fs: Disable many filesystems under lockdown

The idea is to permit the following: btrfs, cpio, exfat, ext, f2fs, fat,
hfsplus, iso9660, squash4, tar, xfs and zfs.

The JFS, ReiserFS, romfs, UDF and UFS security vulnerabilities were
reported by Jonathan Bar Or <jonathanbaror@gmail.com>.

Fixes: CVE-2025-0677
Fixes: CVE-2025-0684
Fixes: CVE-2025-0685
Fixes: CVE-2025-0686
Fixes: CVE-2025-0689

Suggested-by: Daniel Axtens <dja@axtens.net>
Signed-off-by: Daniel Axtens <dja@axtens.net>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>

2025-02-13 15:45:56 +01:00

..

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

affs.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

afs.c

Leverage BFS implementation to read AFS.

2011-10-30 16:10:18 +01:00

archelp.c

fs/archelp: If path given to grub_archelp_dir() is not a directory return error

2023-08-14 18:07:24 +02:00

bfs.c

fs/bfs: Disable under lockdown

2025-02-13 15:45:56 +01:00

btrfs.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

cbfs.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

cpio_be.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

cpio_common.c

fs: Remove trailing whitespaces

2022-03-14 15:45:30 +01:00

cpio.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

erofs.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

exfat.c

exfat reader

2011-04-11 18:13:00 +02:00

ext2.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

f2fs.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

fat.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

fshelp.c

fs: Remove trailing whitespaces

2022-03-14 15:45:30 +01:00

hfs.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

hfsplus.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

hfspluscomp.c

disk: Allow read hook callback to take read buffer to potentially modify it

2022-07-04 14:43:25 +02:00

iso9660.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

jfs.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

minix2_be.c

Handle big-endian minixfs (fixes minixfs tests on bigendian).

2012-04-01 21:35:18 +02:00

minix2.c

Split minix.mod into minix.mod and minix2.mod.

2010-09-08 19:13:48 +02:00

minix3_be.c

Handle big-endian minixfs (fixes minixfs tests on bigendian).

2012-04-01 21:35:18 +02:00

minix3.c

minix3fs support

2011-04-11 08:16:13 +02:00

minix_be.c

Handle big-endian minixfs (fixes minixfs tests on bigendian).

2012-04-01 21:35:18 +02:00

minix.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

newc.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

nilfs2.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

ntfs.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

ntfscomp.c

disk: Allow read hook callback to take read buffer to potentially modify it

2022-07-04 14:43:25 +02:00

odc.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

proc.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

reiserfs.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

romfs.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

sfs.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

squash4.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

tar.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00

udf.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

ufs2.c

automake commit without merge history

2010-05-06 11:34:04 +05:30

ufs_be.c

Support big-endian UFS1.

2012-12-08 20:56:58 +01:00

ufs.c

fs: Disable many filesystems under lockdown

2025-02-13 15:45:56 +01:00

xfs.c

kern/file: Implement filesystem reference counting

2025-01-23 16:22:47 +01:00