]> git.ipfire.org Git - thirdparty/glibc.git/commit
projects / thirdparty / glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: eb5e4ca) | patch
Fall back to non-cached sequence traversal and comparison on malloc fail
authorSiddhesh Poyarekar <siddhesh@redhat.com>
Mon, 23 Sep 2013 05:50:02 +0000 (11:20 +0530)
committerAdhemerval Zanella <azanella@linux.vnet.ibm.com>
Fri, 15 Nov 2013 17:41:55 +0000 (11:41 -0600)
commit5326e2c77bbd559fec9dc50e6d250eb0ce6a8d8c
tree8b46164711075945698a28cc3424e1e0d4f4391btree
parenteb5e4ca15296911a3052268da127ac5fe9cb8a5ccommit | diff
Fall back to non-cached sequence traversal and comparison on malloc fail

strcoll currently falls back to alloca if malloc fails, resulting in a
possible stack overflow.  This patch implements sequence traversal and
comparison without caching indices and rules.

Fixes CVE-2012-4424.
ChangeLog diff | blob | blame | history
NEWS diff | blob | blame | history
string/strcoll_l.c diff | blob | blame | history
A mirror of the official glibc repository