From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: by sourceware.org (Postfix, from userid 48) id 3AE0C3938C30; Fri, 18 Dec 2020 16:04:54 +0000 (GMT) DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 3AE0C3938C30 From: "siddhesh at sourceware dot org" To: glibc-bugs@sourceware.org Subject: [Bug libc/27083] Unsafe unbounded alloca in addmntent Date: Fri, 18 Dec 2020 16:04:54 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: glibc X-Bugzilla-Component: libc X-Bugzilla-Version: unspecified X-Bugzilla-Keywords: X-Bugzilla-Severity: normal X-Bugzilla-Who: siddhesh at sourceware dot org X-Bugzilla-Status: NEW X-Bugzilla-Resolution: X-Bugzilla-Priority: P2 X-Bugzilla-Assigned-To: siddhesh at sourceware dot org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Flags: security- X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: http://sourceware.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: glibc-bugs@sourceware.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Glibc-bugs mailing list List-Unsubscribe: , List-Archive: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Dec 2020 16:04:54 -0000 https://sourceware.org/bugzilla/show_bug.cgi?id=3D27083 --- Comment #2 from Siddhesh Poyarekar --- To elaborate on my previous comment, the glibc Security Process[1] specifies that stack overflows due to an unbounded alloca may be considered a security issue if the data triggering the overflow could come from an untrusted sour= ce.=20 Our assessment is that this is not true for addmntent, i.e. applications us= ing addmntent already run in a trusted context. We can revisit this if it is f= ound that this is not true. [1] https://sourceware.org/glibc/wiki/Security%20Process --=20 You are receiving this mail because: You are on the CC list for the bug.=