aprintf: detect wrap-around when growing allocation - gnurl.git - Fork of curl, renaming to 'gnurl'. Please make sure to run configure with exactly the flags indicated in README.

diff options

author	Daniel Stenberg <daniel@haxx.se>	2016-09-28 10:15:34 +0200
committer	Daniel Stenberg <daniel@haxx.se>	2016-10-31 08:46:35 +0100
commit	8732ec40db652c53fa58cd13e2acb8eab6e40874 (patch)
tree	5fa2321f166bbacd895831857c9e8eb5278139e2 /lib/security.c
parent	ee4f76606cfa4ee068bf28edd37c8dae7e8db317 (diff)
download	gnurl-8732ec40db652c53fa58cd13e2acb8eab6e40874.tar.gz gnurl-8732ec40db652c53fa58cd13e2acb8eab6e40874.tar.bz2 gnurl-8732ec40db652c53fa58cd13e2acb8eab6e40874.zip

aprintf: detect wrap-around when growing allocation

On 32bit systems we could otherwise wrap around after 2GB and allocate 0 bytes and crash. CVE-2016-8618 Bug: https://curl.haxx.se/docs/adv_20161102D.html Reported-by: Cure53

Diffstat (limited to 'lib/security.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: