linux-user: Fix signed math overflow in brk() syscall - focaccia-qemu - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Helge Deller <deller@gmx.de>	2023-07-17 12:39:38 +0200
committer	Helge Deller <deller@gmx.de>	2023-07-18 20:42:05 +0200
commit	eac78a4b0b7da4de2c0a297f4d528ca9cc6256a3 (patch)
tree	31c66f7598c03a387372051a5192f2caa7b83595 /scripts/git-submodule.sh
parent	dfe49864afb06e7e452a4366051697bc4fcfc1a5 (diff)
download	focaccia-qemu-eac78a4b0b7da4de2c0a297f4d528ca9cc6256a3.tar.gz focaccia-qemu-eac78a4b0b7da4de2c0a297f4d528ca9cc6256a3.zip

linux-user: Fix signed math overflow in brk() syscall

Fix the math overflow when calculating the new_malloc_size.

new_host_brk_page and brk_page are unsigned integers. If userspace
reduces the heap, new_host_brk_page is lower than brk_page which results
in a huge positive number (but should actually be negative).

Fix it by adding a proper check and as such make the code more readable.

Signed-off-by: Helge Deller <deller@gmx.de>
Tested-by: "Markus F.X.J. Oberhumer" <markus@oberhumer.com>
Reviewed-by: Philippe Mathieu-Daudé <philmd@linaro.org>
Fixes: 86f04735ac ("linux-user: Fix brk() to release pages")
Cc: qemu-stable@nongnu.org
Buglink: https://github.com/upx/upx/issues/683

Diffstat (limited to 'scripts/git-submodule.sh')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: