oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

GNU patch out of bounds read, null pointer crash and double free

From: Hanno Böck <hanno () hboeck de>
Date: Tue, 13 Feb 2018 12:04:50 +0100
The recent release of GNU patch 2.7.6 fixed an old out of bounds read I
had reported in 2015:

out of bounds read with malformed patch in pch_write_line
https://savannah.gnu.org/bugs/index.php?45990

Commit:
https://git.savannah.gnu.org/cgit/patch.git/commit/src/pch.c?id=a0d7fe4589651c64bd16ddaaa634030bb0455866

I re-checked patch now and found a few more issues:

segfault / null pointer (probably crash only)
https://savannah.gnu.org/bugs/index.php?53132
https://git.savannah.gnu.org/cgit/patch.git/commit/?id=f290f48a621867084884bfff87f8093c15195e6a

double free in function another_hunk()
https://savannah.gnu.org/bugs/index.php?53133

-- 
Hanno Böck
https://hboeck.de/

mail/jabber: hanno () hboeck de
GPG: FE73757FA60E4E21B937579FA5880072BBB51E42
Previous By Date Next
Previous By Thread Next

Current thread: