projects / glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8914230) | patch
[PATCH] CVE-2022-23218: Buffer overflow in sunrpc svcunix_create (bug 28768)
authorFlorian Weimer <fweimer@redhat.com>
Mon, 17 Jan 2022 09:21:34 +0000 (10:21 +0100)
committerHelmut Grohne <helmut@subdivi.de>
Sat, 8 Oct 2022 15:53:16 +0000 (16:53 +0100)
commit14df0d2db3239c90d83804329c701a560c1f5f87
treebc1d3eab19753c2d6d6d8c54ee9ce601cf73d755tree | snapshot
parent891423030c7262c6470b8a0f45a341b35b144cc6commit | diff
[PATCH] CVE-2022-23218: Buffer overflow in sunrpc svcunix_create (bug 28768)

The sunrpc function svcunix_create suffers from a stack-based buffer
overflow with overlong pathname arguments.

Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org>
Helmut Grohne: Ported to glibc 2.28. Inlined __sockaddr_un_set.

Gbp-Pq: Topic all
Gbp-Pq: Name git-CVE-2022-23218-Buffer-overflow-in-sunrpc-svcunix_cre.diff
sunrpc/Makefile diff | blob | history
sunrpc/svc_unix.c diff | blob | history
sunrpc/tst-bug28768.c [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.