projects / platform / upstream / glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 04cb913) | patch
CVE-2015-1472: wscanf allocates too little memory
authorPaul Pluzhnikov <ppluzhnikov@google.com>
Fri, 6 Feb 2015 05:30:42 +0000 (00:30 -0500)
committerCarlos O'Donell <carlos@systemhalted.org>
Fri, 6 Feb 2015 05:34:51 +0000 (00:34 -0500)
commit5bd80bfe9ca0d955bfbbc002781bc7b01b6bcb06
treea77a8efbf88a4eed15cfefe4e5d570d380985c1ctree | snapshot
parent04cb913ddf67ac90da274dd32b6ceafd57ca36cacommit | diff
CVE-2015-1472: wscanf allocates too little memory

BZ #16618

Under certain conditions wscanf can allocate too little memory for the
to-be-scanned arguments and overflow the allocated buffer.  The
implementation now correctly computes the required buffer size when
using malloc.

A regression test was added to tst-sscanf.
ChangeLog diff | blob | history
NEWS diff | blob | history
stdio-common/tst-sscanf.c diff | blob | history
stdio-common/vfscanf.c diff | blob | history
Domain: System / Toolchain;