This is the mail archive of the glibc-bugs@sourceware.org mailing list for the glibc project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

[Bug malloc/22774] New: Integer overflow in _int_malloc


https://sourceware.org/bugzilla/show_bug.cgi?id=22774

            Bug ID: 22774
           Summary: Integer overflow in _int_malloc
           Product: glibc
           Version: 2.24
            Status: NEW
          Severity: normal
          Priority: P2
         Component: malloc
          Assignee: unassigned at sourceware dot org
          Reporter: arjun.is at lostca dot se
  Target Milestone: ---

In 2.24, MALLOC_ALIGNMENT was increased on ppc (bug 6527, commit dea39b13e2),
which led to an integer overflow in _int_malloc. In 2.26, MALLOC_ALIGNMENT was
increased on i386 (bug 21120, commit 4e61a6be44) as well, causing the same
integer overflow to occur on i386 also. These overflows affect malloc as well
as aligned memory allocation functions in cases where the requested alignment
is small enough to internally use _int_malloc.

The overflow (i.e. *this* bug) was fixed by commit 8e448310d7 which also fixes
bug 22343. Incidentally, bug 22343 corresponds to a different integer overflow
in _int_memalign.

Both overflows now stand fixed (2.27).

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]