This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: Ping Re: Fix strtod integer/buffer overflow (bug 14459)

From: Florian Weimer <fweimer at redhat dot com>
To: "Joseph S. Myers" <joseph at codesourcery dot com>
Cc: libc-alpha at sourceware dot org
Date: Fri, 17 Aug 2012 15:50:19 +0200
Subject: Re: Ping Re: Fix strtod integer/buffer overflow (bug 14459)
References: <Pine.LNX.4.64.1208121826210.4075@digraph.polyomino.org.uk> <Pine.LNX.4.64.1208161557010.10703@digraph.polyomino.org.uk>

On 08/16/2012 05:58 PM, Joseph S. Myers wrote:

Ping.  This patch
<http://sourceware.org/ml/libc-alpha/2012-08/msg00202.html> is pending
review - it seems we have more people interested in devising
procedures for hypothetical external reports of security bugs, than in
actually reviewing patches for security bugs.  There was one off-list
request for assertions in str_to_mpn that the number doesn't cause
overflow there, so this patch version adds them.  Tested x86 and
x86_64.

These asserts do not fire in my testing (I tried the test case and the asserts in str_to_mpn). Do we disable asserts, or does the compiler optimize it away for some reason?

--
Florian Weimer / Red Hat Product Security Team

Follow-Ups:
- Re: Ping Re: Fix strtod integer/buffer overflow (bug 14459)
  - From: Joseph S. Myers

References:
- Fix strtod integer/buffer overflow (bug 14459)
  - From: Joseph S. Myers
- Ping Re: Fix strtod integer/buffer overflow (bug 14459)
  - From: Joseph S. Myers

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]