buffer overruns in pidfile handling
Bug #1119977 reported by
Seth Arnold
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
vde2 (Ubuntu) |
Triaged
|
Undecided
|
Unassigned |
Bug Description
static void save_pidfile()
{
else
If programs with this definition are executed with -p <more than PATH_MAX chars>, the pidfile_path heap array is overflowed and undefined behavior, including potential security problems, can result.
This code is duplicated in the following files:
src/vde_autolink.c
src/vde_pcapplug.c
src/vde_plug2tap.c
src/wirefilter.c
src/kvde_
src/slirpvde/
src/vde_
Changed in vde2 (Ubuntu): | |
status: | New → Triaged |
information type: | Private Security → Public Security |
To post a comment you must log in.
https:/ /sourceforge. net/tracker/ ?func=detail& aid=3603893& group_id= 95403&atid= 611248