glibc

mirror of https://sourceware.org/git/glibc.git synced 2024-09-20 00:19:57 +00:00

History

Arjun Shankar 6bd0e4efcc syslog: Fix heap buffer overflow in __vsyslog_internal (CVE-2023-6246) __vsyslog_internal did not handle a case where printing a SYSLOG_HEADER containing a long program name failed to update the required buffer size, leading to the allocation and overflow of a too-small buffer on the heap. This commit fixes that. It also adds a new regression test that uses glibc.malloc.check. Reviewed-by: Adhemerval Zanella <adhemerval.zanella@linaro.org> Reviewed-by: Carlos O'Donell <carlos@redhat.com> Tested-by: Carlos O'Donell <carlos@redhat.com>	2024-01-30 15:53:37 +01:00
..
postclean.req	syslog: Fix heap buffer overflow in __vsyslog_internal (CVE-2023-6246)	2024-01-30 15:53:37 +01:00

Arjun Shankar 6bd0e4efcc syslog: Fix heap buffer overflow in __vsyslog_internal (CVE-2023-6246)

__vsyslog_internal did not handle a case where printing a SYSLOG_HEADER
containing a long program name failed to update the required buffer
size, leading to the allocation and overflow of a too-small buffer on
the heap.  This commit fixes that.  It also adds a new regression test
that uses glibc.malloc.check.

Reviewed-by: Adhemerval Zanella  <adhemerval.zanella@linaro.org>
Reviewed-by: Carlos O'Donell <carlos@redhat.com>
Tested-by: Carlos O'Donell <carlos@redhat.com>

2024-01-30 15:53:37 +01:00

postclean.req

syslog: Fix heap buffer overflow in __vsyslog_internal (CVE-2023-6246)

2024-01-30 15:53:37 +01:00