This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

[patch] Fix for heap overflow in wscanf (BZ 16618)


Greetings,

Attached patch is a rather obvious fix for BZ 16618.
I believe this bug deserves a CVE (I've asked for one), and the fix
should definitely go into 2.21.

Tested on Linux/x86_64, no new failures.

Thanks,
--


Paul Pluzhnikov


2015-02-01  Paul Pluzhnikov  <ppluzhnikov@google.com>

	[BZ #16618]
	* stdio-common/vfscanf.c (ADDW): Correct alloca size check and
	fix heap buffer overflow.

Attachment: pr16618.patch.txt
Description: Text document


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]