CVE-2014-0172 Check for overflow before calling malloc to uncompress data.

https://bugzilla.redhat.com/show_bug.cgi?id=1085663 Reported-by: Florian Weimer <[email protected]> Signed-off-by: Mark Wielaard <[email protected]>
author: Mark Wielaard <[email protected]> 2014-04-09 11:33:23 +0200
committer: Mark Wielaard <[email protected]> 2014-04-09 23:09:40 +0200
commit: 7f1eec317db79627b473c5b149a22a1b20d1f68f (patch)
tree: 9519669bbc391963de80e24b1f38411e26ad2a7e /libdw/ChangeLog
parent: 077082fdefc2057fb9dc455e63c37c432a28b045 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/libdw/ChangeLog b/libdw/ChangeLog
index 1d9b9a3b..e8f0eb88 100644
--- a/libdw/ChangeLog
+++ b/libdw/ChangeLog
@@ -1,3 +1,8 @@
+2014-04-09  Mark Wielaard  <[email protected]>
+
+	* dwarf_begin_elf.c (check_section): Check for unsigned overflow
+	before calling malloc to uncompress data.
+
 2014-03-03  Jan Kratochvil  <[email protected]>
 
 	Fix abort() on missing section headers.
author	Mark Wielaard <[email protected]>	2014-04-09 11:33:23 +0200
committer	Mark Wielaard <[email protected]>	2014-04-09 23:09:40 +0200
commit	7f1eec317db79627b473c5b149a22a1b20d1f68f (patch)
tree	9519669bbc391963de80e24b1f38411e26ad2a7e /libdw/ChangeLog
parent	077082fdefc2057fb9dc455e63c37c432a28b045 (diff)