grub2/0443-osdep-unix-getroot-Fix-potential-underflow.patch

From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001
From: Lidong Chen <lidong.chen@oracle.com>
Date: Wed, 29 Jan 2025 06:48:38 +0000
Subject: [PATCH] osdep/unix/getroot: Fix potential underflow

The entry_len is initialized in grub_find_root_devices_from_mountinfo()
to 0 before the while loop iterates through /proc/self/mountinfo. If the
file is empty or contains only invalid entries entry_len remains
0 causing entry_len - 1 in the subsequent for loop initialization
to underflow. To prevent this add a check to ensure entry_len > 0 before
entering the for loop.

Fixes: CID 473877

Signed-off-by: Lidong Chen <lidong.chen@oracle.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
Reviewed-by: Ross Philipson <ross.philipson@oracle.com>
---
 grub-core/osdep/linux/getroot.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/grub-core/osdep/linux/getroot.c b/grub-core/osdep/linux/getroot.c
index f0c503f43..893527a95 100644
--- a/grub-core/osdep/linux/getroot.c
+++ b/grub-core/osdep/linux/getroot.c
@@ -599,6 +599,9 @@ again:
 	}
     }
 
+  if (!entry_len)
+    goto out;
+
   /* Now scan visible mounts for the ones we're interested in.  */
   for (i = entry_len - 1; i >= 0; i--)
     {
Add several CVE fixes - Resolves: CVE-2024-45779 CVE-2024-45778 CVE-2025-1118 - Resolves: CVE-2025-0677 CVE-2024-45782 CVE-2025-0690 - Resolves: CVE-2024-45783 CVE-2025-0624 CVE-2024-45776 - Resolves: CVE-2025-0622 CVE-2024-45774 CVE-2024-45775 - Resolves: CVE-2024-45781 CVE-2024-45780 - Resolves: #RHEL-79700 - Resolves: #RHEL-79341 - Resolves: #RHEL-79875 - Resolves: #RHEL-79849 - Resolves: #RHEL-79707 - Resolves: #RHEL-79857 - Resolves: #RHEL-79709 - Resolves: #RHEL-79846 - Resolves: #RHEL-75737 - Resolves: #RHEL-79713 - Resolves: #RHEL-73785 - Resolves: #RHEL-73787 - Resolves: #RHEL-79704 - Resolves: #RHEL-79702 Signed-off-by: Nicolas Frayer <nfrayer@redhat.com> 2025-02-13 22:38:23 +00:00			`From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001`
			`From: Lidong Chen <lidong.chen@oracle.com>`
			`Date: Wed, 29 Jan 2025 06:48:38 +0000`
			`Subject: [PATCH] osdep/unix/getroot: Fix potential underflow`

			`The entry_len is initialized in grub_find_root_devices_from_mountinfo()`
			`to 0 before the while loop iterates through /proc/self/mountinfo. If the`
			`file is empty or contains only invalid entries entry_len remains`
			`0 causing entry_len - 1 in the subsequent for loop initialization`
			`to underflow. To prevent this add a check to ensure entry_len > 0 before`
			`entering the for loop.`

			`Fixes: CID 473877`

			`Signed-off-by: Lidong Chen <lidong.chen@oracle.com>`
			`Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>`
			`Reviewed-by: Ross Philipson <ross.philipson@oracle.com>`
			`---`
			`grub-core/osdep/linux/getroot.c \| 3 +++`
			`1 file changed, 3 insertions(+)`

			`diff --git a/grub-core/osdep/linux/getroot.c b/grub-core/osdep/linux/getroot.c`
			`index f0c503f43..893527a95 100644`
			`--- a/grub-core/osdep/linux/getroot.c`
			`+++ b/grub-core/osdep/linux/getroot.c`
			`@@ -599,6 +599,9 @@ again:`
			`}`
			`}`

			`+ if (!entry_len)`
			`+ goto out;`
			`+`
			`/* Now scan visible mounts for the ones we're interested in. */`
			`for (i = entry_len - 1; i >= 0; i--)`
			`{`
No results found.