Diffusion FreeBSD src repository - subversion rS150339

When (re)allocating space for an array of pointers to char, use
rS150339Unpublished
Actions

Edit Commit
Download Raw Diff
Edit Related Objects...
Edit Revisions
Mute Notifications
Flag For Later
Award Token

Unpublished Commit · Learn More

No further details are available.

Description

When (re)allocating space for an array of pointers to char, use
sizeof(*list), not sizeof(**list). (i.e., sizeof(pointer) rather than
sizeof(char)).

It is possible that this buffer overflow is exploitable, but it was
added after RELENG_5 forked and hasn't been MFCed, so this will not
receive an advisory.

Submitted by: Vitezslav Novy
MFC after: 1 day

Details

Provenance

cperciva

Authored on

Parents

rS150338: The "SMC EZ Connect SMC2862W-G" product is not based on the Ralink RT2500USB

Branches

Unknown

Tags

Unknown

Event Timeline

Changes (1)

Path

Size

head/

lib/

libpam/

modules/

pam_exec/

pam_exec.c

rS150339

View Options

head/lib/libpam/modules/pam_exec/pam_exec.c

When (re)allocating space for an array of pointers to char, userS150339UnpublishedActions