This is the mail archive of the glibc-bugs@sourceware.org mailing list for the glibc project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

[Bug network/19879] nss_dns: Stack overflow in getnetbyname implementation (CVE-2016-3075)


https://sourceware.org/bugzilla/show_bug.cgi?id=19879

--- Comment #3 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".

The branch, master has been updated
       via  317b199b4aff8cfa27f2302ab404d2bb5032b9a4 (commit)
      from  a6033052d08027f745867e5e346852da1959226c (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=317b199b4aff8cfa27f2302ab404d2bb5032b9a4

commit 317b199b4aff8cfa27f2302ab404d2bb5032b9a4
Author: Florian Weimer <fweimer@redhat.com>
Date:   Tue Mar 29 12:57:56 2016 +0200

    CVE-2016-3075: Stack overflow in _nss_dns_getnetbyname_r [BZ #19879]

    The defensive copy is not needed because the name may not alias the
    output buffer.

-----------------------------------------------------------------------

Summary of changes:
 ChangeLog                    |    7 +++++++
 resolv/nss_dns/dns-network.c |    5 +----
 2 files changed, 8 insertions(+), 4 deletions(-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]