[PATCH 1/2] arm: CVE-2020-6096: fix memcpy and memmove for negative length [BZ #25620]
Carlos O'Donell
carlos@redhat.com
Tue Jul 7 21:30:25 GMT 2020
On 7/7/20 2:08 PM, Florian Weimer wrote:
> From: Evgeny Eremin <e.eremin@omprussia.ru>
>
> Unsigned branch instructions could be used for r2 to fix the wrong
> behavior when a negative length is passed to memcpy and memmove.
> This commit fixes the generic arm implementation of memcpy amd memmove.
As a GNU Maintainer for glibc I have some visibility into the tickets
filed for FSF copyright assignment to glibc.
For the record both Open Mobile Platform LLC and Evgeny Eremin
have FSF copyright assignment on file for glibc. We can accept any
and all patches. Thank you all for your patience with the CLA process.
I can also confirm (and sorry for not responding more quickly on the
other thread) that all discussions between Open Mobile Platform LLC
were had with *@omprussia.ru accounts and the FSF Copyright &
Licensing Associate as part of ticket [gnu.org #1543679].
In this case *@omprussia.ru emails are by default considered to be
employees of Open Mobile Platform LLC for the purposes of the
copyright assignment, but we all know that might be inacccurate and
we trust everyone to maintain correct protocols for copyright
assignment.
--
Cheers,
Carlos.
More information about the Libc-alpha
mailing list