[PATCH 1/2] arm: CVE-2020-6096: fix memcpy and memmove for negative length [BZ #25620]
Alexander Anisimov
a.anisimov@omprussia.ru
Wed Jul 8 11:49:47 GMT 2020
Yes, it's, patch for multiarch and commit message LGTM, too. Thanks.
________________________________________
From: Florian Weimer [fw@deneb.enyo.de]
Sent: 08 July 2020 08:50
To: libc-alpha@sourceware.org
Cc: Konstantin Karasev; Anton Rybakov; Ildar Kamaletdinov; Alexander Anisimov
Subject: Re: [PATCH 1/2] arm: CVE-2020-6096: fix memcpy and memmove for negative length [BZ #25620]
* Evgeny Eremin:
> On Tue, Jul 07, 2020 at 08:08:22PM +0200, Florian Weimer wrote:
>> From: Evgeny Eremin <e.eremin@omprussia.ru>
>>
>> Unsigned branch instructions could be used for r2 to fix the wrong
>> behavior when a negative length is passed to memcpy and memmove.
>> This commit fixes the generic arm implementation of memcpy amd memmove.
>>
>> ---
>> Please double-check for correct attribution and commit message
>> contents. Thanks. I will submit the NEWS update and XFAIL removal
>> separately.
>>
>> ...
>
> LGTM, thanks.
Is the other patch okay as well? Thanks.
More information about the Libc-alpha
mailing list