search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: 3a3a449) | patch
CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache (bug 31677)
commit87801a8fd06db1d654eea3e4f7626ff476a9bdaa
authorFlorian Weimer <fweimer@redhat.com>
Thu, 25 Apr 2024 13:00:45 +0000 (25 15:00 +0200)
committerFlorian Weimer <fweimer@redhat.com>
Thu, 25 Apr 2024 13:00:45 +0000 (25 15:00 +0200)
tree3239e47686b567f6eac3d4a261a7aff0dadfd895tree | snapshot (tar.gz zip)
parent3a3a4497421422aa854c855cbe5110ca7d598ffccommit | diff
CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache (bug 31677)

Using alloca matches what other caches do.  The request length is
bounded by MAXKEYLEN.

Reviewed-by: Carlos O'Donell <carlos@redhat.com>
nscd/netgroupcache.c diff | blob | blame | history
sources.redhat.com git mirror of glibc CVS