source-git / systemd

Clone
Source Code
GIT

509a8d journald: do not store the iovec entry for process commandline on stack

4 files Authored by Zbigniew Jędrzejewski-Szmek 4 years ago, Committed by Packit Service 4 years ago,
raw patch tree parent
4 files changed. 38 lines added. 30 lines removed.
src/basic/io-util.c
file modified
+10 -0
src/basic/io-util.h
file modified
+2 -0
src/coredump/coredump.c
file modified
+11 -20
src/journal/journald-server.c
file modified
+15 -10 
    journald: do not store the iovec entry for process commandline on stack
    
    This fixes a crash where we would read the commandline, whose length is under
    control of the sending program, and then crash when trying to create a stack
    allocation for it.
    
    CVE-2018-16864
    https://bugzilla.redhat.com/show_bug.cgi?id=1653855
    
    The message actually doesn't get written to disk, because
    journal_file_append_entry() returns -E2BIG.
    
    (cherry-picked from commit 084eeb865ca63887098e0945fb4e93c852b91b0f)
    
    Resolves: #1664976
    
    patch_name: 0070-journald-do-not-store-the-iovec-entry-for-process-co.patch
    present_in_specfile: true
    location_in_specfile: 70
    squash_commits: true
file modified
+10 -0
file modified
+2 -0
file modified
+11 -20
file modified
+15 -10

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation