[xml/sgml-pkgs] Bug#679280: libxml2 security patch
shawn
shawnlandden at gmail.com
Wed Aug 1 08:22:00 UTC 2012
the patch limits malloc to asking for a maximum of 512MB in one call, if
the call is larger it pretends that the call failed. This is probably to
mask some part of the code that isn't safe with >32 bit buffers, which
have been possible since linux2.6 and the introduction of mmap2(), which
takes sizes in pages instead of bytes, allowing allocations larger than
4GB.
See mmap(2)
--
-Shawn Landden
More information about the debian-xml-sgml-pkgs
mailing list