[Bug regex/24114] regexec buffer read overrun in "grep -i '\(\(\)*.\)*\(\)\(\)\1'"

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

[Bug regex/24114] regexec buffer read overrun in "grep -i '\(\(\)*.\)*\(\)\(\)\1'"

glaubitz at physik dot fu-berlin.de

--- Comment #4 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".

The branch, release/2.29/master has been updated
       via  10dd17da710fd32aaf1f2187544d80064b8c4ee0 (commit)
       via  4d0b1b0f61bfba034e9e76a1d76acc59c975238f (commit)
      from  bc6f839fb4066be83272c735e662850af2595777 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------

commit 10dd17da710fd32aaf1f2187544d80064b8c4ee0
Author: Aurelien Jarno <[hidden email]>
Date:   Sat Mar 16 22:59:56 2019 +0100

    Record CVE-2019-9169 in NEWS and ChangeLog [BZ #24114]

    (cherry picked from commit b626c5aa5d0673a9caa48fb79fba8bda237e6fa8)


commit 4d0b1b0f61bfba034e9e76a1d76acc59c975238f
Author: Paul Eggert <[hidden email]>
Date:   Mon Jan 21 11:08:13 2019 -0800

    regex: fix read overrun [BZ #24114]

    Problem found by AddressSanitizer, reported by Hongxu Chen in:
    * posix/regexec.c (proceed_next_node):
    Do not read past end of input buffer.

    (cherry picked from commit 583dd860d5b833037175247230a328f0050dbfe9)


Summary of changes:
 ChangeLog       |    9 +++++++++
 NEWS            |    4 ++++
 posix/regexec.c |    6 ++++--
 3 files changed, 17 insertions(+), 2 deletions(-)

You are receiving this mail because:
You are on the CC list for the bug.