rpms / glibc

Clone
Source Code
GIT

Blame SOURCES/glibc-rh1199525.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-armhfp c7-beta c8 c8-beta c8s c8s-sig-hyperscale-intel c9 c9-beta
  1.   00db108c55cd8cb618a47a31a433779bf70d7c05
  2.   SOURCES
  3.   glibc-rh1199525.patch
Blob History Raw
00db10 
commit 2959eda9272a033863c271aff62095abd01bd4e3
00db10 
Author: Arjun Shankar <arjun.is@lostca.se>
00db10 
Date:   Tue Apr 21 14:06:31 2015 +0200
00db10
00db10 
    CVE-2015-1781: resolv/nss_dns/dns-host.c buffer overflow [BZ#18287]
00db10
00db10 
diff --git glibc-2.17-c758a686/resolv/nss_dns/dns-host.c glibc-2.17-c758a686/resolv/nss_dns/dns-host.c
00db10 
index b16b0dd..d8c5579 100644
00db10 
--- glibc-2.17-c758a686/resolv/nss_dns/dns-host.c
00db10 
+++ glibc-2.17-c758a686/resolv/nss_dns/dns-host.c
00db10 
@@ -613,7 +613,8 @@
00db10 
   int have_to_map = 0;
00db10 
   uintptr_t pad = -(uintptr_t) buffer % __alignof__ (struct host_data);
00db10 
   buffer += pad;
00db10 
-  if (__builtin_expect (buflen < sizeof (struct host_data) + pad, 0))
00db10 
+  buflen = buflen > pad ? buflen - pad : 0;
00db10 
+  if (__builtin_expect (buflen < sizeof (struct host_data), 0))
00db10 
     {
00db10 
       /* The buffer is too small.  */
00db10 
     too_small:

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation