picnoir/Systemd
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

bootctl: safety check for regular file when reading EFI images

Browse source
This commit is contained in:
Lennart Poettering 2019-01-28 17:33:08 +01:00
parent 78d5d4ed77
commit c4ba5b516d
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
src/boot/bootctl.c
View file

@ -96,6 +96,10 @@ static int get_file_version(int fd, char **v) {
if (fstat(fd, &st) < 0)
return log_error_errno(errno, "Failed to stat EFI binary: %m");
r = stat_verify_regular(&st);
if (r < 0)
return log_error_errno(errno, "EFI binary is not a regular file: %m");
if (st.st_size < 27) {
*v = NULL;
return 0;