CVE-2024-33601, CVE-2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX (bug 31680) - mirror/glibc - mirror of git://sourceware.org/git/glibc.git

diff options

author	Florian Weimer <fweimer@redhat.com>	2024-04-25 15:01:07 +0200
committer	Florian Weimer <fweimer@redhat.com>	2024-04-25 15:39:23 +0200
commit	71af8ca864345d39b746d5cee84b94b430fad5db (patch)
tree	df09f5cd3879cac0e9d87c4257b8619fadbbada7 /elf
parent	2ae9446c1b7a3064743b4a51c0bbae668ee43e4c (diff)
download	glibc-71af8ca864345d39b746d5cee84b94b430fad5db.tar.gz glibc-71af8ca864345d39b746d5cee84b94b430fad5db.tar.xz glibc-71af8ca864345d39b746d5cee84b94b430fad5db.zip

CVE-2024-33601, CVE-2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX (bug 31680)

This avoids potential memory corruption when the underlying NSS
callback function does not use the buffer space to store all strings
(e.g., for constant strings).

Instead of custom buffer management, two scratch buffers are used.
This increases stack usage somewhat.

Scratch buffer allocation failure is handled by return -1
(an invalid timeout value) instead of terminating the process.
This fixes bug 31679.

Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org>
(cherry picked from commit c04a21e050d64a1193a6daab872bca2528bda44b)

Diffstat (limited to 'elf')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: