| commit | 627eabb20f2b70faa3698e2c0124094c6d51af8e | |
| author | Paul Pluzhnikov <ppluzhnikov@google.com> | |
| Fri, 6 Feb 2015 05:30:42 +0000 (6 00:30 -0500) | ||
| committer | Adhemerval Zanella <azanella@linux.vnet.ibm.com> | |
| Mon, 23 Feb 2015 15:00:32 +0000 (23 10:00 -0500) | ||
| tree | 52a452489ef9c9b27f7d40bb39853e0781b5c164 | treesnapshot (tar.gz zip) |
| parent | ec36394743c15fedca294219f2254b180c4e327c | commitdiff |
CVE-2015-1472: wscanf allocates too little memory
BZ #16618
Under certain conditions wscanf can allocate too little memory for the
to-be-scanned arguments and overflow the allocated buffer. The
implementation now correctly computes the required buffer size when
using malloc.
A regression test was added to tst-sscanf.
Conflicts:
ChangeLog
NEWS
stdio-common/tst-sscanf.c
BZ #16618
Under certain conditions wscanf can allocate too little memory for the
to-be-scanned arguments and overflow the allocated buffer. The
implementation now correctly computes the required buffer size when
using malloc.
A regression test was added to tst-sscanf.
Conflicts:
ChangeLog
NEWS
stdio-common/tst-sscanf.c
| ChangeLog | diffblobblamehistory | |
| NEWS | diffblobblamehistory | |
| stdio-common/tst-sscanf.c | diffblobblamehistory | |
| stdio-common/vfscanf.c | diffblobblamehistory |