]> git.ipfire.org Git - thirdparty/glibc.git/commit
projects / thirdparty / glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a8b0561) | patch
CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache (bug 31677)
authorFlorian Weimer <fweimer@redhat.com>
Thu, 25 Apr 2024 13:00:45 +0000 (15:00 +0200)
committerFlorian Weimer <fweimer@redhat.com>
Thu, 25 Apr 2024 13:52:33 +0000 (15:52 +0200)
commit52f73e5c4e29b14e79167272297977f360ae1e97
tree0d10322bd878b69db613befd84d4e4c6c03f4bfdtree
parenta8b0561db4b9847ebfbfec20075697d5492a363ccommit | diff
CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache (bug 31677)

Using alloca matches what other caches do.  The request length is
bounded by MAXKEYLEN.

Reviewed-by: Carlos O'Donell <carlos@redhat.com>
(cherry picked from commit 87801a8fd06db1d654eea3e4f7626ff476a9bdaa)
nscd/netgroupcache.c diff | blob | blame | history
A mirror of the official glibc repository