This is the mail archive of the
glibc-bugs@sourceware.org
mailing list for the glibc project.
[Bug network/21461] sunrpc: Memory leak after deserialization failure in xdr_bytes, xdr_string (CVE-2017-8804)
- From: "schwab at linux-m68k dot org" <sourceware-bugzilla at sourceware dot org>
- To: glibc-bugs at sourceware dot org
- Date: Wed, 17 May 2017 09:13:03 +0000
- Subject: [Bug network/21461] sunrpc: Memory leak after deserialization failure in xdr_bytes, xdr_string (CVE-2017-8804)
- Auto-submitted: auto-generated
- References: <bug-21461-131@http.sourceware.org/bugzilla/>
https://sourceware.org/bugzilla/show_bug.cgi?id=21461
Andreas Schwab <schwab@linux-m68k.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|WAITING |NEW
--- Comment #6 from Andreas Schwab <schwab@linux-m68k.org> ---
I have verified that this patch for rpcbind fixes the issue:
Index: rpcbind-0.2.3/src/rpcb_svc.c
===================================================================
--- rpcbind-0.2.3.orig/src/rpcb_svc.c
+++ rpcbind-0.2.3/src/rpcb_svc.c
@@ -166,7 +166,7 @@ rpcb_service_3(struct svc_req *rqstp, SV
svcerr_decode(transp);
if (debugging)
(void) xlog(LOG_DEBUG, "rpcbind: could not decode");
- return;
+ goto done;
}
if (rqstp->rq_proc == RPCBPROC_SET
Index: rpcbind-0.2.3/src/rpcb_svc_4.c
===================================================================
--- rpcbind-0.2.3.orig/src/rpcb_svc_4.c
+++ rpcbind-0.2.3/src/rpcb_svc_4.c
@@ -220,7 +220,7 @@ rpcb_service_4(struct svc_req *rqstp, SV
svcerr_decode(transp);
if (debugging)
(void) xlog(LOG_DEBUG, "rpcbind: could not decode\n");
- return;
+ goto done;
}
if (rqstp->rq_proc == RPCBPROC_SET
A similar patch is needed for svc_simple.c.
--
You are receiving this mail because:
You are on the CC list for the bug.