Bug 11189 - regexec.c: avoid overflow in computing re_malloc buffer size
Summary: regexec.c: avoid overflow in computing re_malloc buffer size
Status: RESOLVED FIXED
Alias: None
Product: glibc
Classification: Unclassified
Component: regex (show other bugs)
Version: 2.12
: P2 normal
Target Milestone: ---
Assignee: Ulrich Drepper
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2010-01-19 15:37 UTC by jim@meyering.net
Modified: 2010-01-22 20:04 UTC (History)
2 users (show)

See Also:
Host:
Target:
Build:
Last reconfirmed:

Attachments
regexec.c: avoid overflow in computing re_malloc buffer size (517 bytes, patch)
2010-01-19 15:41 UTC, jim@meyering.net 		Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description jim@meyering.net 2010-01-19 15:37:55 UTC 
patch coming up
Comment 1 jim@meyering.net 2010-01-19 15:41:12 UTC 
Created attachment 4535 [details]
regexec.c: avoid overflow in computing re_malloc buffer size

2010-01-19  Paul Eggert  <eggert@cs.ucla.edu>

	[BZ #11189]
	regexec.c: avoid overflow in computing re_malloc buffer size
	* posix/regexec.c (prune_impossible_nodes): Avoid overflow
	in computing re_malloc buffer size.
Comment 2 Ulrich Drepper 2010-01-22 20:04:37 UTC 
Checked into git.