oss-sec mailing list archives
Re: Re: jasper: memory allocation failure in jas_malloc (jas_malloc.c)
From: Tavis Ormandy <taviso () google com>
Date: Tue, 25 Oct 2016 12:13:44 -0700
On Sat, Oct 22, 2016 at 6:03 PM, <cve-assign () mitre org> wrote:
https://blogs.gentoo.org/ago/2016/10/18/jasper-memory-allocation-failure-in-jas_malloc-jas_malloc-c AddressSanitizer failed to allocate 0x1000002000 bytes of LargeMmapAllocator 0x7f4f0474e170 in jas_malloc ... jasper-1.900.5/src/libjasper/base/jas_malloc.c:117:9 0x7f4f04764b4f in bmp_getinfo ... jasper-1.900.5/src/libjasper/bmp/bmp_dec.c:297:25Use CVE-2016-8886.
I'm not sure I understand the concern here. Isn't it usually expected that the administrator configures appropriate ulimits, and the code should just handle allocation failure gracefully? If we are considering *not* implementing arbitrary hardcoded limits a security problem, that seems like a significant change in software design philosophy (I've heard it called the zero-one-infinity rule before). Tavis.
Current thread:
- jasper: memory allocation failure in jas_malloc (jas_malloc.c) Agostino Sarubbo (Oct 18)
- Re: jasper: memory allocation failure in jas_malloc (jas_malloc.c) cve-assign (Oct 22)
- Re: Re: jasper: memory allocation failure in jas_malloc (jas_malloc.c) Tavis Ormandy (Oct 25)
- Re: Re: jasper: memory allocation failure in jas_malloc (jas_malloc.c) Agostino Sarubbo (Oct 26)
- Re: Re: jasper: memory allocation failure in jas_malloc (jas_malloc.c) Simon McVittie (Oct 26)
- Re: Re: jasper: memory allocation failure in jas_malloc (jas_malloc.c) Tavis Ormandy (Oct 25)
- Re: jasper: memory allocation failure in jas_malloc (jas_malloc.c) cve-assign (Oct 22)