This is the mail archive of the
glibc-bugs-regex@sourceware.org
mailing list for the glibc project.
[Bug regex/1245] New: regexec invokes alloca with unbounded size; plus alloca cleanup
- From: "eggert at gnu dot org" <sourceware-bugzilla at sources dot redhat dot com>
- To: glibc-bugs-regex at sources dot redhat dot com
- Date: 26 Aug 2005 05:53:25 -0000
- Subject: [Bug regex/1245] New: regexec invokes alloca with unbounded size; plus alloca cleanup
- Reply-to: sourceware-bugzilla at sources dot redhat dot com
I noticed that regexec's set_regs functions invokes alloca with a potentially
unbounded size. glibc code is supposed to check the size first with
__libc_use_alloca first.
While fixing this, I noticed a lot of ancient portability cruft for alloca,
intended for use outside glibc, that is no longer needed now that gnulib
supplies an alloca module. This can be cleaned out now.
I'll attach a patch.
--
Summary: regexec invokes alloca with unbounded size; plus alloca
cleanup
Product: glibc
Version: 2.3.5
Status: NEW
Severity: normal
Priority: P2
Component: regex
AssignedTo: gotom at debian dot or dot jp
ReportedBy: eggert at gnu dot org
CC: glibc-bugs-regex at sources dot redhat dot com,glibc-
bugs at sources dot redhat dot com
BugsThisDependsOn: 1241
http://sources.redhat.com/bugzilla/show_bug.cgi?id=1245
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.