projects / platform / upstream / linaro-glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d3180f6) | patch
CVE-2015-1472: wscanf allocates too little memory
authorPaul Pluzhnikov <ppluzhnikov@google.com>
Fri, 6 Feb 2015 05:30:42 +0000 (00:30 -0500)
committerDongkyun, Son <dongkyun.s@samsung.com>
Sun, 22 May 2016 13:26:59 +0000 (22:26 +0900)
commit7da6da0086479f1083be4f05858169237cdb475f
treeb87845b3970fac459cae136a751a5c0e1f7816catree | snapshot
parentd3180f61af8fc705605d9a51b07ae41b949c7d8acommit | diff
CVE-2015-1472: wscanf allocates too little memory

BZ #16618

Under certain conditions wscanf can allocate too little memory for the
to-be-scanned arguments and overflow the allocated buffer.  The
implementation now correctly computes the required buffer size when
using malloc.

A regression test was added to tst-sscanf.

(cherry picked from commit 5bd80bfe9ca0d955bfbbc002781bc7b01b6bcb06)

Conflicts:
ChangeLog
NEWS
ChangeLog diff | blob | history
NEWS diff | blob | history
stdio-common/tst-sscanf.c diff | blob | history
stdio-common/vfscanf.c diff | blob | history
Domain: System / Toolchain;