glibc: Fix CVE-2015-8778 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Yuanjie Huang <yuanjie.huang@windriver.com>	2016-04-27 02:32:55 -0700
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2016-05-11 12:37:06 +0100
commit	49ce0e7d4a7bb3223aa33188fc987d651334ffe5 (patch)
tree	bb17b1ff2e9b415b1f6601a8a3df91e488f7aa58 /documentation/adt-manual/adt-manual-eclipse-customization.xsl
parent	6b2102cd59c1ac48b8550dbbea0b83eada7e7b32 (diff)
download	poky-49ce0e7d4a7bb3223aa33188fc987d651334ffe5.tar.gz

glibc: Fix CVE-2015-8778

CVE: CVE-2015-8778 Improve check against integer wraparound in hcreate_r [BZ #18240] This is an integer overflow in hcreate and hcreate_r which can result in an out-of-bound memory access. This could lead to application crashes or, potentially, arbitrary code execution. Upstream-Status: Backport [2.23] (cherry-picked from commit bae7c7c7, 4bd228c8) (From OE-Core rev: 71b051f51a44dad1fdca7ca6b3552d0aebdc91d3) Signed-off-by: Yuanjie Huang <yuanjie.huang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'documentation/adt-manual/adt-manual-eclipse-customization.xsl')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: