about summary refs log tree commit diff
path: root/src/network/recv.c
diff options
context:
space:
mode:
authorRich Felker <dalias@aerifal.cx>2014-03-09 01:38:52 -0500
committerRich Felker <dalias@aerifal.cx>2014-03-09 01:38:52 -0500
commitba231cf9e5923b6216081e9a626465c6643ce4d3 (patch)
treefa2e3c3b43d22efe22f5d4af24acd84504b826b0 /src/network/recv.c
parent73f5b096056e03d8e27965040faee0af778517fc (diff)
downloadmusl-ba231cf9e5923b6216081e9a626465c6643ce4d3.tar.gz
musl-ba231cf9e5923b6216081e9a626465c6643ce4d3.tar.xz
musl-ba231cf9e5923b6216081e9a626465c6643ce4d3.zip
fix buffer overflow in printf formatting of denormals with low bit set
empirically the overflow was an off-by-one, and it did not seem to be
overwriting meaningful data. rather than simply increasing the buffer
size by one, however, I have attempted to make the size obviously
correct in terms of bounds on the number of iterations for the loops
that fill the buffer. this still results in no more than a negligible
size increase of the buffer on the stack (6-7 32-bit slots) and is a
"safer" fix unless/until somebody wants to do the proof that a smaller
buffer would suffice.
Diffstat (limited to 'src/network/recv.c')
0 files changed, 0 insertions, 0 deletions