pam_namespace: validate amount of uids in config - pam.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Tobias Stoeckmann <tobias@stoeckmann.org>	2024-01-02 18:34:45 +0100
committer	Dmitry V. Levin <ldv@strace.io>	2024-01-03 17:16:02 +0000
commit	353aa13b9c81beb4ba7f02ae57b0722de6a4d565 (patch)
tree	db02a99cd7ac96741750457e7ff724b84428f6be /configure.ac
parent	b6eda496fd5f7a9724887b208b5d4338c474bb7b (diff)
download	pam-353aa13b9c81beb4ba7f02ae57b0722de6a4d565.tar.gz pam-353aa13b9c81beb4ba7f02ae57b0722de6a4d565.tar.bz2 pam-353aa13b9c81beb4ba7f02ae57b0722de6a4d565.zip

pam_namespace: validate amount of uids in config

If more than INT_MAX uids are found in a configuration line, the variable `count` would trigger a signed integer overflow. If more than UINT_MAX uids are found in a configuration line, then the `num_uids` counter is invalid, which could eventually lead to out of boundary accesses. Also make sure that size multiplication for malloc does not overflow. Signed-off-by: Tobias Stoeckmann <tobias@stoeckmann.org>

Diffstat (limited to 'configure.ac')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: