projects / glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a891378) | patch
[PATCH] CVE-2022-23218: Buffer overflow in sunrpc svcunix_create (bug 28768)
authorFlorian Weimer <fweimer@redhat.com>
Mon, 17 Jan 2022 09:21:34 +0000 (10:21 +0100)
committerAdrian Bunk <bunk@debian.org>
Tue, 23 Apr 2024 16:23:00 +0000 (19:23 +0300)
commite24d4b8c9e2bb0e920708ec6b2b340dbd635efda
tree8bf20bd0f522458c787ec8ca2fb2dba8ba43b323tree | snapshot
parenta8913780ccaae88bf7df7d19303a57cb12e5935dcommit | diff
[PATCH] CVE-2022-23218: Buffer overflow in sunrpc svcunix_create (bug 28768)

The sunrpc function svcunix_create suffers from a stack-based buffer
overflow with overlong pathname arguments.

Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org>
Helmut Grohne: Ported to glibc 2.28. Inlined __sockaddr_un_set.

Gbp-Pq: Topic all
Gbp-Pq: Name git-CVE-2022-23218-Buffer-overflow-in-sunrpc-svcunix_cre.diff
sunrpc/Makefile diff | blob | history
sunrpc/svc_unix.c diff | blob | history
sunrpc/tst-bug28768.c [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.