Bug#615120: eglibc: alloca memory corruption

To: 615120@bugs.debian.org
Subject: Bug#615120: eglibc: alloca memory corruption
From: Michael Gilbert <michael.s.gilbert@gmail.com>
Date: Sat, 26 Feb 2011 09:18:58 -0500
Message-id: <20110226091858.75f39a56.michael.s.gilbert@gmail.com>
Reply-to: Michael Gilbert <michael.s.gilbert@gmail.com>, 615120@bugs.debian.org
In-reply-to: <20110226102906.GB24799@hall.aurel32.net>
References: <20110225162211.83a8d13a.michael.s.gilbert@gmail.com> <20110226102906.GB24799@hall.aurel32.net>

On Sat, 26 Feb 2011 11:29:06 +0100 Aurelien Jarno wrote:

> On Fri, Feb 25, 2011 at 04:22:11PM -0500, Michael Gilbert wrote:
> > package: eglibc
> > version: 2.11.2-10
> > severity: grave
> > tag: security
> > 
> > A memory corruption issue has been disclosed for eglibc [0].  I've
> > checked, and lenny (glibc), squeeze, and sid are affected by the poc.
> > experimental is not.  According to the report, this permits arbitrary
> > code execution.
> > 
> 
> Do you have a CVE number that we can use in the changelog?

No, there hasn't been one assigned yet.

Mike

Reply to:

References:
- Bug#615120: eglibc: alloca memory corruption
  - From: Michael Gilbert <michael.s.gilbert@gmail.com>
- Bug#615120: eglibc: alloca memory corruption
  - From: Aurelien Jarno <aurelien@aurel32.net>

Prev by Date: Processed: tagging 585737
Next by Date: r4538 - in glibc-package/branches/eglibc-2.13/debian/patches: all alpha amd64 any arm hppa hurd-i386 i386 locale localedata m68k s390 sparc
Previous by thread: Bug#615120: eglibc: alloca memory corruption
Next by thread: Bug#615120: marked as done (eglibc: alloca memory corruption)
Index(es):
- Date
- Thread