glibc.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Siddhesh Poyarekar <siddhesh@redhat.com>	2013-09-23 11:20:02 +0530
committer	Allan McRae <allan@archlinux.org>	2013-10-25 23:54:29 +1000
commit	56532663f2881ce7b7996d75dbb6bbb438187457 (patch)
tree	295f18a939b465768960b9cbb68ed05cb298f483 /scripts/check-execstack.awk
parent	52b8d67f22068991f404c51b38b30e7e35c1bb99 (diff)
download	glibc-56532663f2881ce7b7996d75dbb6bbb438187457.tar.xz glibc-56532663f2881ce7b7996d75dbb6bbb438187457.zip

Fall back to non-cached sequence traversal and comparison on malloc fail

strcoll currently falls back to alloca if malloc fails, resulting in a possible stack overflow. This patch implements sequence traversal and comparison without caching indices and rules. Fixes CVE-2012-4424. (cherry picked from commit 141f3a77fe4f1b59b0afa9bf6909cd2000448883) Conflicts: NEWS

Diffstat (limited to 'scripts/check-execstack.awk')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: