This is the mail archive of the
glibc-bugs@sourceware.org
mailing list for the glibc project.
[Bug malloc/22774] New: Integer overflow in _int_malloc
- From: "arjun.is at lostca dot se" <sourceware-bugzilla at sourceware dot org>
- To: glibc-bugs at sourceware dot org
- Date: Fri, 02 Feb 2018 11:57:47 +0000
- Subject: [Bug malloc/22774] New: Integer overflow in _int_malloc
- Auto-submitted: auto-generated
https://sourceware.org/bugzilla/show_bug.cgi?id=22774
Bug ID: 22774
Summary: Integer overflow in _int_malloc
Product: glibc
Version: 2.24
Status: NEW
Severity: normal
Priority: P2
Component: malloc
Assignee: unassigned at sourceware dot org
Reporter: arjun.is at lostca dot se
Target Milestone: ---
In 2.24, MALLOC_ALIGNMENT was increased on ppc (bug 6527, commit dea39b13e2),
which led to an integer overflow in _int_malloc. In 2.26, MALLOC_ALIGNMENT was
increased on i386 (bug 21120, commit 4e61a6be44) as well, causing the same
integer overflow to occur on i386 also. These overflows affect malloc as well
as aligned memory allocation functions in cases where the requested alignment
is small enough to internally use _int_malloc.
The overflow (i.e. *this* bug) was fixed by commit 8e448310d7 which also fixes
bug 22343. Incidentally, bug 22343 corresponds to a different integer overflow
in _int_memalign.
Both overflows now stand fixed (2.27).
--
You are receiving this mail because:
You are on the CC list for the bug.