Buffer overflow in getaddrinfo()

Description

A buffer overflow has been found in getaddrinfo(). Patch with fix has been provided by reporter in https://github.com/zephyrproject-rtos/zephyr/pull/6158

This seems to affect older versions, so backporting to 1.10 and 1.9 is advisable.

Due to the severity (externally controllable), I would even assign a CVE number.

Environment

None

Assignee

Leandro Pereira

Reporter

Leandro Pereira

Labels

None

Authorized viewers

Maureen Helm

CVE

CVE-2017-14199

Embargo Lift

None

Fix versions

Affects versions

Priority

High
Configure