Description: fix integer underflow that can trigger arbitrary code execution.
Author: Kees Cook <kees@ubuntu.com>
Bug-Ubuntu: https://launchpad.net/bugs/542197

Index: eglibc-2.11.1/elf/dynamic-link.h
===================================================================
--- eglibc-2.11.1.orig/elf/dynamic-link.h	2010-03-25 15:42:22.700708465 -0700
+++ eglibc-2.11.1/elf/dynamic-link.h	2010-03-25 15:45:26.840772712 -0700
@@ -113,7 +113,7 @@
 
   while (dyn->d_tag != DT_NULL)
     {
-      if (dyn->d_tag < DT_NUM)
+      if ((Elf32_Word) dyn->d_tag < DT_NUM)
 	info[dyn->d_tag] = dyn;
       else if (dyn->d_tag >= DT_LOPROC &&
 	       dyn->d_tag < DT_LOPROC + DT_THISPROCNUM)