gstrfuncs: Add g_memdup2() function

mirror of https://gitlab.gnome.org/GNOME/glib.git synced 2025-08-01 15:03:39 +02:00

This will replace the existing `g_memdup()` function, which has an
unavoidable security flaw of taking its `byte_size` argument as a
`guint` rather than as a `gsize`. Most callers will expect it to be a
`gsize`, and may pass in large values which could silently be truncated,
resulting in an undersize allocation compared to what the caller
expects.

This could lead to a classic buffer overflow vulnerability for many
callers of `g_memdup()`.

`g_memdup2()`, in comparison, takes its `byte_size` as a `gsize`.

Spotted by Kevin Backhouse of GHSL.

Signed-off-by: Philip Withnall <pwithnall@endlessos.org>
Helps: GHSL-2021-045
Helps: #2319

This commit is contained in:

Philip Withnall

2021-02-04 13:30:52 +00:00

parent 8385664f47

commit f8cf0b8672

4 changed files with 58 additions and 0 deletions

1

docs/reference/glib/glib-sections.txt

View File

@@ -1341,6 +1341,7 @@ g_newa
 <SUBSECTION>
 g_memmove
 g_memdup
 g_memdup2
 <SUBSECTION>
 GMemVTable

gstrfuncs: Add g_memdup2() function

1 docs/reference/glib/glib-sections.txt Unescape Escape View File

1

docs/reference/glib/glib-sections.txt

View File