git.ipfire.org Git - thirdparty/curl.git/commit

]> git.ipfire.org Git - thirdparty/curl.git/commit

projects / thirdparty / curl.git / commit

author	Daniel Stenberg <daniel@haxx.se>
	Wed, 28 Sep 2016 08:15:34 +0000 (10:15 +0200)
committer	Daniel Stenberg <daniel@haxx.se>
	Mon, 31 Oct 2016 07:46:35 +0000 (08:46 +0100)
commit	8732ec40db652c53fa58cd13e2acb8eab6e40874
tree	5fa2321f166bbacd895831857c9e8eb5278139e2	tree \| snapshot
parent	ee4f76606cfa4ee068bf28edd37c8dae7e8db317	commit \| diff

aprintf: detect wrap-around when growing allocation

On 32bit systems we could otherwise wrap around after 2GB and allocate 0
bytes and crash.

CVE-2016-8618

Bug: https://curl.haxx.se/docs/adv_20161102D.html
Reported-by: Cure53

lib/mprintf.c

diff | blob | blame | history

Mirror of https://github.com/curl/curl.git

RSS Atom