New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Stack overflows in nss_mymachines (CVE-2015-7510) #2002
Comments
|
getpwnam() is not a security boundary, hence why is this a security issue? Sure, we should validate this here, but I fail to see why this a security problem? |
|
Anyway, fixed by #2006. |
|
Of course Thanks for fixing it. |
|
Thanks for the bug report. |
systemd/systemd#2002 (cherry picked from commit cb31827)
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
systemd/systemd#2002 (cherry picked from commit cb31827) [ tblume: fixes boo#956712 ]
The
getpwnamandgetgrnamimplementations innss_mymachineshave stack overflows due to an unconstrainedallocacall (hidden behindstrndupa). Example forgetpwnam:This has been assigned CVE-2015-7510 for tracking purposes.
The text was updated successfully, but these errors were encountered: