Skip to content
Branch: master
Find file History
Pull request Compare This branch is 1 commit ahead, 3 commits behind mudongliang:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
..
Failed to load latest commit information.
README.md
poc.c

README.md

CVE-2011-1071

Experiment Environment

Ubuntu 8.10

INSTALL & Configuration

Preinstalled environment

Problems in Installation & Configuration

How to trigger vulnerability

gcc -o poc poc.c
./poc 1073741796

or

./poc 3000000

PoCs

Bug 11883 (CVE-2011-1071) - fnmatch() alloca() abuse, with security consequence (CVE-2011-1071)

GNU glibc 'fnmatch()' Function Stack Corruption Vulnerability

GNU glibc < 2.12.2 - 'fnmatch()' Stack Corruption

I got accidental code execution via glibc?!

Vulnerability Details & Patch

Root Cause

Stack Trace

Patch

https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=f15ce4d8dc139523fe0c273580b604b2453acba6

References

You can’t perform that action at this time.