projects / platform / upstream / gettext.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fd47d7e) | patch
[CVE-2018-17942] vasnprintf: Fix heap memory overrun bug. 33/253533/1 accepted/tizen_6.5_base accepted/tizen_6.5_base_tool accepted/tizen_7.0_base accepted/tizen_7.0_base_hotfix accepted/tizen_7.0_base_tool accepted/tizen_7.0_base_tool_hotfix sandbox/backup/gettext_0.19.8.1_20221227 tizen_6.5_base tizen_7.0_base tizen_7.0_base_hotfix accepted/tizen/6.5/base/20230714.002510 accepted/tizen/6.5/base/tool/20211027.115312 accepted/tizen/7.0/base/20230714.002918 accepted/tizen/7.0/base/hotfix/20230714.003733 accepted/tizen/7.0/base/tool/20221028.120820 accepted/tizen/7.0/base/tool/hotfix/20221115.085309 accepted/tizen/base/tool/20210221.221004 submit/tizen_6.5_base/20211026.180901 submit/tizen_6.5_base/20211027.183101 submit/tizen_6.5_base/20211027.200601 submit/tizen_7.0_base/20221028.201101 submit/tizen_7.0_base_hotfix/20221115.161601 submit/tizen_base/20210215.063514 submit/tizen_base/20230131.073426 submit/tizen_base/20230131.075327 tizen_6.5.m2_release tizen_7.0_m2_release
authorBruno Haible <bruno@clisp.org>
Sun, 23 Sep 2018 12:13:52 +0000 (14:13 +0200)
committerDongHun Kwak <dh0128.kwak@samsung.com>
Mon, 15 Feb 2021 05:09:21 +0000 (14:09 +0900)
commitec7bc014e7efbe6a818b10ee24c88cc5f34b8397
tree291b91e0bf4cae82236637145d5de7024044eb1btree | snapshot
parentfd47d7e535282b628695fe4408ce6efdfbfd2a51commit | diff
[CVE-2018-17942] vasnprintf: Fix heap memory overrun bug.

Reported by Ben Pfaff <blp@cs.stanford.edu> in
<https://lists.gnu.org/archive/html/bug-gnulib/2018-09/msg00107.html>.

* lib/vasnprintf.c (convert_to_decimal): Allocate one more byte of
memory.
* tests/test-vasnprintf.c (test_function): Add another test.

Change-Id: Ie50e7373fd91502a455cce464ae3379d0817ad5a
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
gettext-runtime/intl/vasnprintf.c diff | blob | history
gettext-runtime/libasprintf/vasnprintf.c diff | blob | history
gettext-tools/gnulib-lib/vasnprintf.c diff | blob | history
gettext-tools/libgettextpo/vasnprintf.c diff | blob | history
Domain: System / Base;