Summary: | buffer overflow in sunrpc clnt_create (CVE-2022-23219) | ||
---|---|---|---|
Product: | glibc | Reporter: | Martin Sebor <msebor> |
Component: | network | Assignee: | Florian Weimer <fweimer> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | aurelien, carnil, drepper.fsp, fweimer, pgowda.cve, sam, siddhesh |
Priority: | P2 | Flags: | fweimer:
security+
|
Version: | 2.24 | ||
Target Milestone: | 2.35 | ||
See Also: | https://sourceware.org/bugzilla/show_bug.cgi?id=28768 | ||
Host: | Target: | ||
Build: | Last reconfirmed: | 2018-02-06 00:00:00 |
Description
Martin Sebor
2017-12-03 22:27:53 UTC
Patch posted for review: https://sourceware.org/ml/libc-alpha/2017-12/msg00058.html Fixed for glibc 2.35 via: commit 226b46770c82899b555986583294b049c6ec9b40 Author: Florian Weimer <fweimer@redhat.com> Date: Mon Jan 17 10:21:34 2022 +0100 CVE-2022-23219: Buffer overflow in sunrpc clnt_create for "unix" (bug 22542) Processing an overlong pathname in the sunrpc clnt_create function results in a stack-based buffer overflow. Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org> . |