This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.
Index Nav: | [Date Index] [Subject Index] [Author Index] [Thread Index] | |
---|---|---|
Message Nav: | [Date Prev] [Date Next] | [Thread Prev] [Thread Next] |
Other format: | [Raw text] |
Greetings, Attached patch is a rather obvious fix for BZ 16618. I believe this bug deserves a CVE (I've asked for one), and the fix should definitely go into 2.21. Tested on Linux/x86_64, no new failures. Thanks, -- Paul Pluzhnikov 2015-02-01 Paul Pluzhnikov <ppluzhnikov@google.com> [BZ #16618] * stdio-common/vfscanf.c (ADDW): Correct alloca size check and fix heap buffer overflow.
Attachment:
pr16618.patch.txt
Description: Text document
Index Nav: | [Date Index] [Subject Index] [Author Index] [Thread Index] | |
---|---|---|
Message Nav: | [Date Prev] [Date Next] | [Thread Prev] [Thread Next] |