This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] malloc: verify the size of top chuck, stopping House of Force

From: Zack Weinberg <zackw at panix dot com>
To: DJ Delorie <dj at redhat dot com>
Cc: Florian Weimer <fweimer at redhat dot com>, GNU C Library <libc-alpha at sourceware dot org>, johnchen902 at gmail dot com
Date: Thu, 16 Aug 2018 15:38:00 -0400
Subject: Re: [PATCH] malloc: verify the size of top chuck, stopping House of Force
References: <021be5b6-d31c-587b-fe26-8368001703de@redhat.com> <xnzhxmf6tr.fsf@greed.delorie.com>

On Thu, Aug 16, 2018 at 3:29 PM, DJ Delorie <dj@redhat.com> wrote:
>
> Florian Weimer <fweimer@redhat.com> writes:
>> DJ, will you apply this patch?  We do not need copyright assignment for
>> this.
>
> Done.  Thanks!

Should we have a test case for this?  It doesn't look hard to write,
going by https://heap-exploitation.dhavalkapil.com/attacks/house_of_force.html
.

Follow-Ups:
- Re: [PATCH] malloc: verify the size of top chuck, stopping House of Force
  - From: DJ Delorie
- Re: [PATCH] malloc: verify the size of top chuck, stopping House of Force
  - From: Florian Weimer

References:
- Re: [PATCH] malloc: verify the size of top chuck, stopping House of Force
  - From: Florian Weimer
- Re: [PATCH] malloc: verify the size of top chuck, stopping House of Force
  - From: DJ Delorie

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]