public inbox for glibc-bugs@sourceware.org
help / color / mirror / Atom feed
* [Bug libc/661] New: getgrouplist memory corruption
@ 2005-01-14 13:22 kukuk at suse dot de
2005-01-14 13:23 ` [Bug libc/661] " kukuk at suse dot de
` (4 more replies)
0 siblings, 5 replies; 6+ messages in thread
From: kukuk at suse dot de @ 2005-01-14 13:22 UTC (permalink / raw)
To: glibc-bugs
If you call getgrouplist with ngroups=0 as argument to find out, how
big the buffer needs to be, it will corrupt the stack. The problem is,
that internal_getgrouplist will always add the main group at first,
without checking for enough space.
--
Summary: getgrouplist memory corruption
Product: glibc
Version: 2.3.4
Status: NEW
Severity: critical
Priority: P2
Component: libc
AssignedTo: gotom at debian dot or dot jp
ReportedBy: kukuk at suse dot de
CC: glibc-bugs at sources dot redhat dot com
http://sources.redhat.com/bugzilla/show_bug.cgi?id=661
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
^ permalink raw reply [flat|nested] 6+ messages in thread* [Bug libc/661] getgrouplist memory corruption
2005-01-14 13:22 [Bug libc/661] New: getgrouplist memory corruption kukuk at suse dot de
@ 2005-01-14 13:23 ` kukuk at suse dot de
2005-03-29 23:40 ` cvs-commit at gcc dot gnu dot org
` (3 subsequent siblings)
4 siblings, 0 replies; 6+ messages in thread
From: kukuk at suse dot de @ 2005-01-14 13:23 UTC (permalink / raw)
To: glibc-bugs
------- Additional Comments From kukuk at suse dot de 2005-01-14 13:23 -------
Created an attachment (id=352)
--> (http://sources.redhat.com/bugzilla/attachment.cgi?id=352&action=view)
Patch to check for enough space
--
http://sources.redhat.com/bugzilla/show_bug.cgi?id=661
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
^ permalink raw reply [flat|nested] 6+ messages in thread* [Bug libc/661] getgrouplist memory corruption
2005-01-14 13:22 [Bug libc/661] New: getgrouplist memory corruption kukuk at suse dot de
2005-01-14 13:23 ` [Bug libc/661] " kukuk at suse dot de
@ 2005-03-29 23:40 ` cvs-commit at gcc dot gnu dot org
2005-03-29 23:40 ` cvs-commit at gcc dot gnu dot org
` (2 subsequent siblings)
4 siblings, 0 replies; 6+ messages in thread
From: cvs-commit at gcc dot gnu dot org @ 2005-03-29 23:40 UTC (permalink / raw)
To: glibc-bugs
------- Additional Comments From cvs-commit at gcc dot gnu dot org 2005-03-29 23:40 -------
Subject: Bug 661
CVSROOT: /cvs/glibc
Module name: libc
Changes by: roland@sources.redhat.com 2005-03-29 23:39:59
Modified files:
grp : initgroups.c
Log message:
2005-03-29 Thorsten Kukuk <kukuk@suse.de>
[BZ #661]
* grp/initgroups.c (internal_getgrouplist): Check if we have
enough space before adding the primary group to the list.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/libc/grp/initgroups.c.diff?cvsroot=glibc&r1=1.33&r2=1.34
--
http://sources.redhat.com/bugzilla/show_bug.cgi?id=661
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
^ permalink raw reply [flat|nested] 6+ messages in thread* [Bug libc/661] getgrouplist memory corruption
2005-01-14 13:22 [Bug libc/661] New: getgrouplist memory corruption kukuk at suse dot de
2005-01-14 13:23 ` [Bug libc/661] " kukuk at suse dot de
2005-03-29 23:40 ` cvs-commit at gcc dot gnu dot org
@ 2005-03-29 23:40 ` cvs-commit at gcc dot gnu dot org
2005-03-29 23:41 ` roland at gnu dot org
2006-08-03 15:25 ` cvs-commit at gcc dot gnu dot org
4 siblings, 0 replies; 6+ messages in thread
From: cvs-commit at gcc dot gnu dot org @ 2005-03-29 23:40 UTC (permalink / raw)
To: glibc-bugs
------- Additional Comments From cvs-commit at gcc dot gnu dot org 2005-03-29 23:40 -------
Subject: Bug 661
CVSROOT: /cvs/glibc
Module name: libc
Branch: glibc-2_3-branch
Changes by: roland@sources.redhat.com 2005-03-29 23:40:49
Modified files:
grp : initgroups.c
Log message:
2005-03-29 Thorsten Kukuk <kukuk@suse.de>
[BZ #661]
* grp/initgroups.c (internal_getgrouplist): Check if we have
enough space before adding the primary group to the list.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/libc/grp/initgroups.c.diff?cvsroot=glibc&only_with_tag=glibc-2_3-branch&r1=1.33&r2=1.33.2.1
--
http://sources.redhat.com/bugzilla/show_bug.cgi?id=661
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
^ permalink raw reply [flat|nested] 6+ messages in thread
* [Bug libc/661] getgrouplist memory corruption
2005-01-14 13:22 [Bug libc/661] New: getgrouplist memory corruption kukuk at suse dot de
` (2 preceding siblings ...)
2005-03-29 23:40 ` cvs-commit at gcc dot gnu dot org
@ 2005-03-29 23:41 ` roland at gnu dot org
2006-08-03 15:25 ` cvs-commit at gcc dot gnu dot org
4 siblings, 0 replies; 6+ messages in thread
From: roland at gnu dot org @ 2005-03-29 23:41 UTC (permalink / raw)
To: glibc-bugs
------- Additional Comments From roland at gnu dot org 2005-03-29 23:41 -------
Now in both branches.
--
What |Removed |Added
----------------------------------------------------------------------------
OtherBugsDependingO| |724
nThis| |
Status|NEW |RESOLVED
Resolution| |FIXED
http://sources.redhat.com/bugzilla/show_bug.cgi?id=661
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
^ permalink raw reply [flat|nested] 6+ messages in thread* [Bug libc/661] getgrouplist memory corruption
2005-01-14 13:22 [Bug libc/661] New: getgrouplist memory corruption kukuk at suse dot de
` (3 preceding siblings ...)
2005-03-29 23:41 ` roland at gnu dot org
@ 2006-08-03 15:25 ` cvs-commit at gcc dot gnu dot org
4 siblings, 0 replies; 6+ messages in thread
From: cvs-commit at gcc dot gnu dot org @ 2006-08-03 15:25 UTC (permalink / raw)
To: glibc-bugs
------- Additional Comments From cvs-commit at gcc dot gnu dot org 2006-08-03 15:25 -------
Subject: Bug 661
CVSROOT: /cvs/glibc
Module name: libc
Changes by: drepper@sourceware.org 2006-08-03 15:25:19
Modified files:
grp : initgroups.c
Log message:
(internal_getgrouplist): Remove unnecessary test introduced in patch
for bz #661.
(getgrouplist): Simplify code a bit.
Patches:
http://sourceware.org/cgi-bin/cvsweb.cgi/libc/grp/initgroups.c.diff?cvsroot=glibc&r1=1.34&r2=1.35
--
http://sourceware.org/bugzilla/show_bug.cgi?id=661
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
^ permalink raw reply [flat|nested] 6+ messages in thread
end of thread, other threads:[~2006-08-03 15:25 UTC | newest]
Thread overview: 6+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2005-01-14 13:22 [Bug libc/661] New: getgrouplist memory corruption kukuk at suse dot de
2005-01-14 13:23 ` [Bug libc/661] " kukuk at suse dot de
2005-03-29 23:40 ` cvs-commit at gcc dot gnu dot org
2005-03-29 23:40 ` cvs-commit at gcc dot gnu dot org
2005-03-29 23:41 ` roland at gnu dot org
2006-08-03 15:25 ` cvs-commit at gcc dot gnu dot org
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).