This is the mail archive of the glibc-bugs@sourceware.org mailing list for the glibc project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

[Bug glob/22332] Buffer overflow in glob with GLOB_TILDE in unescaping (CVE-2017-15804)


https://sourceware.org/bugzilla/show_bug.cgi?id=22332

--- Comment #7 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".

The branch, release/2.26/master has been updated
       via  0890d5379cac9b7e2a5f09c3647ebad235c1442d (commit)
       via  a9f35ac127e2244185d0a80ed91fa629f9d19dcf (commit)
       via  f1cf98b583787cfb6278baea46e286a0ee7567fd (commit)
       via  6f9f307b5db6b2eeb7b92f2a75e5ab3e749c3d56 (commit)
      from  f312f235d535fac5c3ff2b0aa7cacb1958aa4529 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=0890d5379cac9b7e2a5f09c3647ebad235c1442d

commit 0890d5379cac9b7e2a5f09c3647ebad235c1442d
Author: Aurelien Jarno <aurelien@aurel32.net>
Date:   Fri Dec 1 21:53:51 2017 +0100

    Update NEWS to add CVE-2017-15804 entry

    (cherry picked from commit 15e84c63c05e0652047ba5e738c54d79d62ba74b)

https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=a9f35ac127e2244185d0a80ed91fa629f9d19dcf

commit a9f35ac127e2244185d0a80ed91fa629f9d19dcf
Author: Florian Weimer <fweimer@redhat.com>
Date:   Thu Nov 2 11:06:45 2017 +0100

    posix/tst-glob-tilde.c: Add test for bug 22332

    (cherry picked from commit 2fac6a6cd50c22ac28c97d0864306594807ade3e)

https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=f1cf98b583787cfb6278baea46e286a0ee7567fd

commit f1cf98b583787cfb6278baea46e286a0ee7567fd
Author: Paul Eggert <eggert@cs.ucla.edu>
Date:   Sun Oct 22 10:00:57 2017 +0200

    glob: Fix buffer overflow during GLOB_TILDE unescaping [BZ #22332]

    (cherry picked from commit a159b53fa059947cc2548e3b0d5bdcf7b9630ba8)

https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=6f9f307b5db6b2eeb7b92f2a75e5ab3e749c3d56

commit 6f9f307b5db6b2eeb7b92f2a75e5ab3e749c3d56
Author: Florian Weimer <fweimer@redhat.com>
Date:   Sun Oct 22 09:29:52 2017 +0200

    Update NEWS and ChangeLog for CVE-2017-15671

    (cherry picked from commit 914c9994d27b80bc3b71c483e801a4f04e269ba6)

-----------------------------------------------------------------------

Summary of changes:
 ChangeLog              |   13 +++++++++++
 NEWS                   |    9 ++++++++
 posix/glob.c           |    4 +-
 posix/tst-glob-tilde.c |   53 +++++++++++++++++++++++++++--------------------
 4 files changed, 54 insertions(+), 25 deletions(-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]