]> git.ipfire.org Git - thirdparty/glibc.git/commit
projects / thirdparty / glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2dc811b) | patch
Fall back to non-cached sequence traversal and comparison on malloc fail
authorSiddhesh Poyarekar <siddhesh@redhat.com>
Mon, 23 Sep 2013 05:50:02 +0000 (11:20 +0530)
committerAdhemerval Zanella <azanella@linux.vnet.ibm.com>
Thu, 15 Jan 2015 19:53:15 +0000 (14:53 -0500)
commitc1132021659d22753104762a074d6339ae6cbd01
tree0d1d7e0b2d07c10fb8334f22705fc3401b415939tree
parent2dc811b78adc97b5f5d951716df30053a24da1a1commit | diff
Fall back to non-cached sequence traversal and comparison on malloc fail

strcoll currently falls back to alloca if malloc fails, resulting in a
possible stack overflow.  This patch implements sequence traversal and
comparison without caching indices and rules.

Fixes CVE-2012-4424.
ChangeLog diff | blob | blame | history
NEWS diff | blob | blame | history
string/strcoll_l.c diff | blob | blame | history
A mirror of the official glibc repository