oss-sec mailing list archives
CVE Request: null pointer deref in openslp, can be triggered remotely
From: Huzaifa Sidhpurwala <huzaifas () redhat com>
Date: Wed, 18 May 2016 11:33:05 +0530
Hi All, The following flaw was reported to us by Yuguang Cai. Basically return value from malloc isnt checked, in _xrealloc function. This can be triggered remotely by sending a large number of request, which could possibly lead malloc to fail at one point, causing crash via null pointer deref. Because of the way memory works on modern linux systems, this one seems to be difficult to exploit, so i am wondering if a CVE id should really be assigned to this issue. Details at: https://bugzilla.redhat.com/show_bug.cgi?id=1329295 -- Huzaifa Sidhpurwala / Red Hat Product Security Team
Current thread:
- CVE Request: null pointer deref in openslp, can be triggered remotely Huzaifa Sidhpurwala (May 17)
- Re: CVE Request: null pointer deref in openslp, can be triggered remotely cve-assign (May 18)
- Re: Re: CVE Request: null pointer deref in openslp, can be triggered remotely Huzaifa Sidhpurwala (May 18)
- Re: CVE Request: null pointer deref in openslp, can be triggered remotely cve-assign (May 18)