Package: dietlibc-dev Version: 0.33~cvs20120325-3 Severity: critical Justification: buffer overflow
The ARM assembly version of sigsetjmp(3) can store up to 42 integers into the jmp_buf, on armhf without NEON it will store 26 integers; the dietlibc jmp_buf only has enough space for 24 integers; thus, any use of sigsetjmp() or setjmp() will overwrite user data. Patch follows. Apparently, it’s armhf fixing weekend (RCBW) for me. bye, //mirabilos -- 13:37⎜«Natureshadow» Deep inside, I hate mirabilos. I mean, he's a good guy. But he's always right! In every fsckin' situation, he's right. Even with his deeply perverted taste in software and borked ambition towards broken OSes - in the end, he's damn right about it :(! […] works in mksh -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
