This is the mail archive of the glibc-bugs@sourceware.org mailing list for the glibc project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

[Bug network/16002] New: calls to getaddrinfo() can segfault with large numbers of local ipaddrs.


https://sourceware.org/bugzilla/show_bug.cgi?id=16002

            Bug ID: 16002
           Summary: calls to getaddrinfo() can segfault with large numbers
                    of local ipaddrs.
           Product: glibc
           Version: 2.18
            Status: NEW
          Severity: normal
          Priority: P2
         Component: network
          Assignee: unassigned at sourceware dot org
          Reporter: dbavatar at gmail dot com

__check_pf() uses alloca() without checking input size (list of local ipaddrs),
eventually this will exceed the stack and segfault. Needs to be converted to
alloca_account with malloc fallback. Patch being send to libc-alpha.

-- 
You are receiving this mail because:
You are on the CC list for the bug.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]