develooper Front page | perl.perl5.porters | Postings from January 2017

[perl #130635] [PATCH] Stack overflow in Storable retrieve_hook

Thread Previous | Thread Next
James E Keenan via RT
January 25, 2017 02:05
[perl #130635] [PATCH] Stack overflow in Storable retrieve_hook
Message ID:
On Tue, 24 Jan 2017 19:22:28 GMT, wrote:
> This is a bug report for perl from,
> generated with the help of perlbug 1.40 running under perl 5.25.9.
> -----------------------------------------------------------------
> AFL detected a stack overflow in Storable's retrieve_hook() function.
> The problem essentially is that a hook's classname length is read into
> a signed integer, compared to the size of a stack buffer, then used to
> read the classname. The size comparison treats the length as signed,
> while the read treats the length as unsigned.

Available for smoke-testing in this branch:


I corrected one spelling error in a test description and incremented the VERSION number.

James E Keenan (

via perlbug:  queue: perl5 status: new

Thread Previous | Thread Next Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at | Group listing | About