[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-devel] [PATCH v2 0/2] Limit and protect execve arguments
From: |
P J P |
Subject: |
[Qemu-devel] [PATCH v2 0/2] Limit and protect execve arguments |
Date: |
Mon, 6 Mar 2017 12:47:19 +0530 |
From: Prasad J Pandit <address@hidden>
Hello,
A user program could pass large number of 'argv','env' arguments to an
execve(2) call. It could lead to bad behaviour as the TARGET_NR_execve:
allocates stack memory(via alloca) for these arguments. alloca(3) is
better for allocations of upto one page(4KB) of stack memory. As anything
more could smash stack protectors in place.
This patch(v2) set attempts to fix these issues.
-> https://lists.gnu.org/archive/html/qemu-devel/2017-03/msg00750.html
Thank you.
--
Prasad J Pandit (2):
linux-user: limit number of arguments to execve
linux-user: allocate heap memory for execve arguments
linux-user/syscall.c | 13 +++++++++++--
1 file changed, 11 insertions(+), 2 deletions(-)
--
2.9.3