emo/procps
1
0
Fork 0
Code Issues Pull Requests Packages Releases Activity
procps/proc
History
Qualys Security Advisory 47303a3592 proc/escape.c: Make sure all escape*() arguments are safe. 
The SECURE_ESCAPE_ARGS() macro solves several potential problems
(although we found no problematic calls to the escape*() functions in
procps's code-base, but had to thoroughly review every call; and this is
library code):

1/ off-by-one overflows if the size of the destination buffer is 0;

2/ buffer overflows if this size (or "maxroom") is negative;

3/ integer overflows (for example, "*maxcells+1");

4/ always null-terminate the destination buffer (unless its size is 0).
2018-05-19 07:32:21 +10:00
..
alloc.c
proc/alloc.*: Use size_t, not unsigned int.
2018-05-19 07:32:21 +10:00
alloc.h
proc/alloc.*: Use size_t, not unsigned int.
2018-05-19 07:32:21 +10:00
COPYING
devname.c
proc/devname.c: Never write more than "chop" (part 2).
2018-05-19 07:32:21 +10:00
devname.h
escape.c
proc/escape.c: Make sure all escape*() arguments are safe.
2018-05-19 07:32:21 +10:00
escape.h
fprocopen.3
docs: Change name of fprocopen man page
2018-02-28 21:24:03 +11:00
libprocps.pc.in
libprocps.sym
sysctl: Bring procio functions out of library
2018-03-01 21:25:04 +11:00
numa.c
library: set stage for NUMA node field display support
2017-05-22 21:34:32 +10:00
numa.h
library: build on non-glibc systems
2018-04-10 21:28:11 +10:00
openproc.3
procps-private.h
procps.h
library: relocate the typedef used in alloc.h override
2017-12-23 17:41:37 +11:00
pwcache.c
library: rename clashing pwcache functions
2016-07-06 22:26:02 +10:00
pwcache.h
library: rename clashing pwcache functions
2016-07-06 22:26:02 +10:00
readproc.3
readproc.c
proc/readproc.c: Add checks to get_ns_name() and get_ns_id().
2018-05-19 07:32:21 +10:00
readproc.h
library: avoid QUICK_THREADS, swat Redhat bug #1284091
2016-07-09 13:23:27 +10:00
readproctab.3
sig.c
proc/sig.c: Harden print_given_signals().
2018-05-19 07:32:21 +10:00
sig.h
slab.c
proc/slab.c: Initialize struct slab_info in get_slabnode().
2018-05-19 07:32:21 +10:00
slab.h
proc/slab.h: Fix off-by-one overflow in sscanf().
2018-05-19 07:32:21 +10:00
sysinfo.c
proc/sysinfo.c: Fix off-by-one in get_pid_digits().
2018-05-19 07:32:21 +10:00
sysinfo.h
version.c
version.h
proc/version.h: Protect parameter in LINUX_VERSION() macro.
2018-05-19 07:32:21 +10:00
wchan.c
misc: remove some trailing whitespace newly introduced
2016-12-07 21:50:59 +11:00
wchan.h
whattime.c
proc/whattime.c: Always initialize buf.
2018-05-19 07:32:21 +10:00
whattime.h