procps

mirrors/procps

Fork 0

mirror of https://gitlab.com/procps-ng/procps.git synced 2024-11-27 20:14:05 +08:00

Commit Graph

Author SHA1 Message Date

Author	SHA1	Message	Date
Roman Žilka	f5f843e257	ps/parser: parse_list(): int overflow for large arg, free() of uninit. ptr * ps/parser.c:parse_list(): Regression (`2c933ecb`): node->u is uninitialized at free(node->u) when reached before node->u=xcalloc(). * ps/parser.c:parse_list(): When "arg" is very long, CVE-2023-4016 is triggered. `2c933ecb` handles the multiplication issue, but there is still the possibility of int overflow when incrementing "items".	2023-08-19 15:46:55 +10:00
Craig Small	47a8676625	build-sys: Relocate lib/ test files in lib go to src/tests include/ goes to local/ lib/*.c goes to local/ Signed-off-by: Craig Small <csmall@dropbear.xyz>	2022-08-29 20:28:03 +10:00

Roman Žilka

f5f843e257

ps/parser: parse_list(): int overflow for large arg, free() of uninit. ptr

* ps/parser.c:parse_list(): Regression (2c933ecb): node->u is uninitialized at
  free(node->u) when reached before node->u=xcalloc().
* ps/parser.c:parse_list(): When "arg" is very long, CVE-2023-4016 is triggered.
  2c933ecb handles the multiplication issue, but there is still the possibility
  of int overflow when incrementing "items".

2023-08-19 15:46:55 +10:00

Craig Small

47a8676625

build-sys: Relocate lib/

test files in lib go to src/tests
include/ goes to local/
lib/*.c goes to local/

Signed-off-by: Craig Small <csmall@dropbear.xyz>

2022-08-29 20:28:03 +10:00

2 Commits