]> git.ipfire.org Git - thirdparty/glibc.git/commit
projects / thirdparty / glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d73ac1b) | patch
CVE-2012-3406: Stack overflow in vfprintf [BZ #16617]
authorJeff Law <law@redhat.com>
Mon, 15 Dec 2014 09:09:32 +0000 (10:09 +0100)
committerAllan McRae <allan@archlinux.org>
Tue, 16 Dec 2014 04:31:59 +0000 (14:31 +1000)
commita3a1f4163c4d0f9a36056c8640661a88674ae8a2
tree0038a292434ff876261eb6f9b1fe81c409c89865tree
parentd73ac1bb436cf1adb62335f53b4fc91a02f40a3bcommit | diff
CVE-2012-3406: Stack overflow in vfprintf [BZ #16617]

A larger number of format specifiers coudld cause a stack overflow,
potentially allowing to bypass _FORTIFY_SOURCE format string
protection.

(cherry picked from commit a5357b7ce2a2982c5778435704bcdb55ce3667a0)
(cherry picked from commit ae61fc7b33d9d99d2763c16de8275227dc9748ba)

Conflicts:
NEWS
ChangeLog diff | blob | blame | history
NEWS diff | blob | blame | history
stdio-common/Makefile diff | blob | blame | history
stdio-common/bug23-2.c [new file with mode: 0644] blob
stdio-common/bug23-3.c [new file with mode: 0644] blob
stdio-common/bug23-4.c [new file with mode: 0644] blob
stdio-common/vfprintf.c diff | blob | blame | history
A mirror of the official glibc repository