develooper Front page | perl.perl5.porters | Postings from February 2013

Re: [perl #115990] 3 new severe ptr errors in 5.14.3 (non-threadedasan)

Thread Previous
Dave Mitchell
February 24, 2013 23:50
Re: [perl #115990] 3 new severe ptr errors in 5.14.3 (non-threadedasan)
Message ID:
On Wed, Dec 19, 2012 at 05:43:05PM -0600, Reini Urban wrote:
> It would be nice if 5.14.4 would contain those fixes.
> See
> RT#72700 List::Util boot Fix off-by-two on string literal length
> RT#111586 sdbm.c off-by-one access to global .dir
> RT#111594 Socket::unpack_sockaddr_un heap-buffer-overflow

These three have now been added to the maint-5.14 branch.

> RT#115992 PL_eval_start use-after-free
> RT#115994 S_join_exact global-buffer-overflow

These two had already been added.

PS: Note that the patch for

    RT#111594 Socket::unpack_sockaddr_un heap-buffer-overflow

in appears to have lost one of the Copy() calls - the one in the
non-linux #ifdef branch; it was there in your original diff attached to the
RT#111594 ticket, but seems to have got dropped at some point. I decided
to go with the code that was in the current version of Socket.

Nothing ventured, nothing lost.

Thread Previous Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at | Group listing | About