Merge qa-regression-testing:glibc-cve-2021-35942 into qa-regression-testing:master
Proposed by
Mark Esler
Status: | Merged |
---|---|
Merged at revision: | d87a9ae579e3ad186824dab8dc2e76c9590dd178 |
Proposed branch: | qa-regression-testing:glibc-cve-2021-35942 |
Merge into: | qa-regression-testing:master |
Diff against target: |
62 lines (+29/-2) 4 files modified
scripts/glibc/Makefile (+2/-2) scripts/glibc/wordexp/Makefile (+6/-0) scripts/glibc/wordexp/cve-2021-35942.c (+10/-0) scripts/test-glibc.py (+11/-0) |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Steve Beattie | Approve | ||
Marc Deslauriers | Pending | ||
Review via email: mp+424805@code.launchpad.net |
Commit message
test-glibc.py: add testcase for CVE-2021-35942
Description of the change
Alphabetized directories with files to build.
Added PoC and testcase for CVE-2021-35942.
I tested PoC on two patched systems (Jammy and Bionic) and each gave exit code 5. An unpatched system (Xenial) gave exit code -11.
Also, all glibc tests pass on Bionic, but Jammy needs to be fixed. It errors on test_d_
To post a comment you must log in.
Hey Mark, this looks pretty good. I'm assuming this testcase is based on a PoC from somewhere else? Can you include a reference or origin either as a comment in the source code or else as aa README, just so that we have an attribution reference where possible?