Closed Bug 482678 Opened 15 years ago Closed 15 years ago

+/1 problem in pem/pobject.c causes invalid write and/or double free

Categories

(NSS :: Libraries, defect)

Product:
NSS
Component:
Libraries
Platform:
All
Linux
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: kdudka, Unassigned)

References

(
URL
)

Details

User-Agent:       Opera/9.50 (X11; Linux x86_64; U; en)
Build Identifier: nss-pem-20080124

minimal example: https://bugzilla.redhat.com/attachment.cgi?id=331111
proposed patch: https://bugzilla.redhat.com/attachment.cgi?id=333603

reported against Fedora: https://bugzilla.redhat.com/show_bug.cgi?id=483855

Reproducible: Always

Steps to Reproduce:
1. run referred test

Actual Results:  
crash/undefined behavior


patch is simple
The PEM reader is not (yet?) part of NSS, see bug 402712. The fix should go into an updated version of the patch attached to that bug (attachment 287590 [details] [diff] [review]).
Status: UNCONFIRMED → RESOLVED
Closed: 15 years ago
Resolution: --- → INVALID
Thanks for routing me! I will report it there.
You need to log in before you can comment on or make changes to this bug.