| commit | b5faf032c4c6a2260a9a93d8d4df611caa8b54cc | |
| author | Paul Pluzhnikov <ppluzhnikov@google.com> | |
| Fri, 6 Feb 2015 05:30:42 +0000 (6 00:30 -0500) | ||
| committer | Adhemerval Zanella <azanella@linux.vnet.ibm.com> | |
| Mon, 23 Feb 2015 14:09:19 +0000 (23 09:09 -0500) | ||
| tree | 6c21dd50664bece7fe4e8931b4ba80239f5f26b2 | treesnapshot (tar.gz zip) |
| parent | 88a8a351f3a6a95205a1499fd68b79fc3d0b9d19 | commitdiff |
CVE-2015-1472: wscanf allocates too little memory
BZ #16618
Under certain conditions wscanf can allocate too little memory for the
to-be-scanned arguments and overflow the allocated buffer. The
implementation now correctly computes the required buffer size when
using malloc.
A regression test was added to tst-sscanf.
Conflicts:
ChangeLog
NEWS
BZ #16618
Under certain conditions wscanf can allocate too little memory for the
to-be-scanned arguments and overflow the allocated buffer. The
implementation now correctly computes the required buffer size when
using malloc.
A regression test was added to tst-sscanf.
Conflicts:
ChangeLog
NEWS
| ChangeLog | diffblobblamehistory | |
| NEWS | diffblobblamehistory | |
| stdio-common/tst-sscanf.c | diffblobblamehistory | |
| stdio-common/vfscanf.c | diffblobblamehistory |