pam_env: abort when encountering an overflowed environment variable expansion

* modules/pam_env/pam_env.c (_expand_arg): Abort when encountering an overflowed environment variable expansion. Fixes CVE-2011-3149. Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/pam/+bug/874565
author: Kees Cook <kees@debian.org> 2011-10-14 19:47:23 +0000
committer: Dmitry V. Levin <ldv@altlinux.org> 2011-10-14 19:47:23 +0000
commit: 109823cb621c900c07c4b6cdc99070d354d19444 (patch)
tree: f75f2de0f16559f9dbbd60d8aa5312d22b5a7b56 /ChangeLog
parent: caf5e7f61c8d9288daa49b4f61962e6b1239121d (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index f823d23e..107f7651 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,5 +1,10 @@
 2011-10-14  Kees Cook <kees@debian.org>
 
+	* modules/pam_env/pam_env.c (_expand_arg): Abort when encountering an
+	overflowed environment variable expansion.
+	Fixes CVE-2011-3149.
+	Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/pam/+bug/874565
+
 	* modules/pam_env/pam_env.c (_assemble_line): Correctly count leading
 	whitespace.
 	Fixes CVE-2011-3148.
author	Kees Cook <kees@debian.org>	2011-10-14 19:47:23 +0000
committer	Dmitry V. Levin <ldv@altlinux.org>	2011-10-14 19:47:23 +0000
commit	109823cb621c900c07c4b6cdc99070d354d19444 (patch)
tree	f75f2de0f16559f9dbbd60d8aa5312d22b5a7b56 /ChangeLog
parent	caf5e7f61c8d9288daa49b4f61962e6b1239121d (diff)