mirror of
https://git.openwrt.org/openwrt/openwrt.git
synced 2025-04-28 19:07:42 +00:00
27adf03f70
uImage.FIT validation was restricted to certain sub-image types which is problematic as it then won't validate eg. 'filesystem' type subimages. Also prevent decompressing sub-images into a arbitrary sized buffer just to then free that buffer -- there is not need to do this and creating malicious compressed payloads which overflow the buffer is too easy. Signed-off-by: Daniel Golle <daniel@makrotopia.org>