Debian Patches
Status for newlib/3.3.0-1.3+deb12u1
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| reproducible-builds-locale.patch | no | |||||
| fix-include-paths-nano-specs.patch | no | |||||
| mallocr-CVE-2021-3420.patch | malloc/nano-malloc: correctly check for out-of-bounds allocation reqs The overflow check in mEMALIGn erroneously checks for INT_MAX, albeit the input parameter is size_t. Fix this to check for __SIZE_MAX__ instead. Also, it misses to check the req against adding the alignment before calling mALLOc. While at it, add out-of-bounds checks to pvALLOc, nano_memalign, nano_valloc, and Cygwin's (unused) dlpvalloc. |
Corinna Vinschen <vinschen@redhat.com> | not-needed | https://keithp.com/cgit/picolibc.git/patch/newlib/libc/stdlib/mallocr.c?id=aa106b29a6a8a1b0df9e334704292cbc32f2d44e | 2020-11-17 |
All known versions for source package 'newlib'
- 4.5.0.20241231-1 (sid, forky, trixie)
- 3.3.0-1.3+deb12u1 (bookworm)