oss-sec mailing list archives
Re: lynx: crash when parsing overly long links
From: Hanno Böck <hanno () hboeck de>
Date: Sun, 8 Feb 2015 11:53:33 +0100
On Fri, 06 Feb 2015 18:55:08 -0700 Kurt Seifried <kseifried () redhat com> wrote:
Sorry forgot to include the link https://bugzilla.redhat.com/show_bug.cgi?id=605286
Here's the upstream reference/changelog: http://lynx.isc.org/current/CHANGES.html#v2.8.8dev.4 quote: "* limit parsed URIs with new config parameter MAX_URI_SIZE, default 8192 (RedHat #605286, forwarded by Vincent Danen). For arbitrarily long URIs, alloca() could run out of stack space -TD" So it got fixed in the 4th dev version of 2.8.8. Everyone who's using 2.8.8 (release version) or above is not affected. -- Hanno Böck http://hboeck.de/ mail/jabber: hanno () hboeck de GPG: BBB51E42
Attachment:
_bin
Description: OpenPGP digital signature
Current thread:
- lynx: crash when parsing overly long links Kurt Seifried (Feb 06)
- Re: lynx: crash when parsing overly long links Alan Coopersmith (Feb 06)
- Re: lynx: crash when parsing overly long links Kurt Seifried (Feb 06)
- Re: lynx: crash when parsing overly long links Hanno Böck (Feb 08)
- Re: lynx: crash when parsing overly long links Kurt Seifried (Feb 06)
- Re: lynx: crash when parsing overly long links Alan Coopersmith (Feb 06)