The bug is in fs/ecryptfs/read_write.c in the function ecryptfs_write(). It uses 32 bit variables for total_remaining_bytes and total_remaining_zeros. This causes the value to be truncated, and num_bytes will become zero. At that point each iteration of the loop will increase the filesize by zero bytes, and it will never reach the desired size.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/721955 Title: ftruncate DoS on ecryptfs -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
