source-git / systemd

Clone
Source Code
GIT

8f2ca2 journald: set a limit on the number of fields (1k)

2 files Authored by Zbigniew Jędrzejewski-Szmek 4 years ago, Committed by Packit Service 4 years ago,
raw patch tree parent
2 files changed. 8 lines added. 0 lines removed.
src/journal/journal-file.h
file modified
+3 -0
src/journal/journald-native.c
file modified
+5 -0 
    journald: set a limit on the number of fields (1k)
    
    We allocate a iovec entry for each field, so with many short entries,
    our memory usage and processing time can be large, even with a relatively
    small message size. Let's refuse overly long entries.
    
    CVE-2018-16865
    https://bugzilla.redhat.com/show_bug.cgi?id=1653861
    
    What from I can see, the problem is not from an alloca, despite what the CVE
    description says, but from the attack multiplication that comes from creating
    many very small iovecs: (void* + size_t) for each three bytes of input message.
    
    (cherry-picked from commit 052c57f132f04a3cf4148f87561618da1a6908b4)
    
    Resolves: #1664977
    
    patch_name: 0080-journald-set-a-limit-on-the-number-of-fields-1k.patch
    present_in_specfile: true
    location_in_specfile: 80
    squash_commits: true
file modified
+3 -0
file modified
+5 -0

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation