Page MenuHomeFreeBSD
Differential D10042

tighten buffer bounds in imgact_binmisc_populate_interp
ClosedPublic
Actions

Authored by emaste on Mar 17 2017, 7:32 PM.
Tags
None
Referenced Files
Unknown Object (File)
Jan 15 2025, 5:40 PM
Unknown Object (File)
Dec 31 2024, 8:52 AM
Unknown Object (File)
Dec 9 2024, 4:10 AM
Unknown Object (File)
Nov 28 2024, 5:07 AM
Unknown Object (File)
Nov 21 2024, 5:06 PM
Unknown Object (File)
Nov 17 2024, 8:22 PM
Unknown Object (File)
Nov 17 2024, 6:16 PM
Unknown Object (File)
Nov 17 2024, 2:03 PM
View All 57 Files
Subscribers
None

Details

Reviewers
sson
sbruno
Commits
rS315685: tighten buffer bounds in imgact_binmisc_populate_interp
Summary

We must ensure there's space for the terminating null in the temporary buffer in imgact_binmisc_populate_interp().

Note that there is not a possible buffer overflow here, because xbe->xbe_interpreter's length and null termination is checked in imgact_binmisc_add_entry() before imgact_binmisc_populate_interp() is called, but the latter should correctly enforce its own bounds.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

emaste created this revision.Mar 17 2017, 7:32 PM
emaste edited the summary of this revision. (Show Details)Mar 17 2017, 7:35 PM
sbruno accepted this revision.Mar 21 2017, 3:03 PM
This revision is now accepted and ready to land.Mar 21 2017, 3:03 PM
Closed by commit rS315685: tighten buffer bounds in imgact_binmisc_populate_interp (authored by emaste). · Explain WhyMar 21 2017, 6:02 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
head/
sys/
kern/
2 lines

Diff 26502

View Options

head/sys/kern/imgact_binmisc.c

Loading...