[CVE-2018-17942] vasnprintf: Fix heap memory overrun bug. 98/252998/1 accepted/tizen_6.5_base accepted/tizen_6.5_base_tool accepted/tizen_7.0_base accepted/tizen_7.0_base_hotfix accepted/tizen_7.0_base_tool accepted/tizen_7.0_base_tool_hotfix tizen_6.5_base tizen_7.0_base tizen_7.0_base_hotfix accepted/tizen/6.5/base/20230714.002752 accepted/tizen/6.5/base/tool/20211028.034937 accepted/tizen/7.0/base/20230714.003200 accepted/tizen/7.0/base/hotfix/20230714.004009 accepted/tizen/7.0/base/tool/20221028.113327 accepted/tizen/7.0/base/tool/hotfix/20221115.085109 accepted/tizen/base/tool/20210205.014735 submit/tizen_6.5_base/20211026.180901 submit/tizen_6.5_base/20211027.183101 submit/tizen_6.5_base/20211027.201201 submit/tizen_6.5_base/20211028.121101 submit/tizen_6.5_base/20211028.124201 submit/tizen_7.0_base/20221028.200901 submit/tizen_7.0_base_hotfix/20221115.161501 submit/tizen_base/20210204.003912 submit/tizen_base/20210204.012023 submit/tizen_base/20210204.234525 tizen_6.5.m2_release tizen_7.0_m2_release
authorBruno Haible <bruno@clisp.org>
Sun, 23 Sep 2018 12:13:52 +0000 (14:13 +0200)
committerDongHun Kwak <dh0128.kwak@samsung.com>
Thu, 4 Feb 2021 00:35:18 +0000 (09:35 +0900)
commit939931cd5aa5c9c9111142b7e034ae14f0229924
treebb3dfcbd39470df4b2c215581eeae3c8ad7e90cd
parentd50bdfaeb15c61da84923ed9ba74644c5b2a1bc3
[CVE-2018-17942] vasnprintf: Fix heap memory overrun bug.

Reported by Ben Pfaff <blp@cs.stanford.edu> in
<https://lists.gnu.org/archive/html/bug-gnulib/2018-09/msg00107.html>.

* lib/vasnprintf.c (convert_to_decimal): Allocate one more byte of
memory.

Change-Id: I3e78111a16ac31b690caa29c1dfbb1cb7262ecd1
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
lib/vasnprintf.c