glibc

Commit Graph

Author	SHA1	Message	Date
Siddhesh Poyarekar	303e567a80	Check for integer overflow in cache size computation in strcoll strcoll is implemented using a cache for indices and weights of collation sequences in the strings so that subsequent passes do not have to search through collation data again. For very large string inputs, the cache size computation could overflow. In such a case, use the fallback function that does not cache indices and weights of collation sequences. Fixes CVE-2012-4412.	2013-09-23 11:29:53 +05:30

Author

SHA1

Message

Date

Siddhesh Poyarekar

303e567a80

Check for integer overflow in cache size computation in strcoll

strcoll is implemented using a cache for indices and weights of
collation sequences in the strings so that subsequent passes do not
have to search through collation data again.  For very large string
inputs, the cache size computation could overflow.  In such a case,
use the fallback function that does not cache indices and weights of
collation sequences.

Fixes CVE-2012-4412.

2013-09-23 11:29:53 +05:30

1 Commits