https://bugs.winehq.org/show_bug.cgi?id=54376
Bug ID: 54376 Summary: ws2_32:sock - test_reuseaddr() overflows a sockaddr variable by reading an AF_INET6 peer name into it Product: Wine Version: 8.0 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: winsock Assignee: wine-bugs@winehq.org Reporter: jinoh.kang.kr@gmail.com CC: pgofman@codeweavers.com Regression SHA1: c6da691926c418697ab982a284228772837a4be2 Distribution: ---
ws2_32:sock - test_reuseaddr() overflows a sockaddr variable (saddr) by passing it as a peer name buffer to accept() on an IPv6 TCP listener socket, which then assumes that the buffer is at least as large as struct sockaddr_in6.
https://bugs.winehq.org/show_bug.cgi?id=54376
Jinoh Kang jinoh.kang.kr@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Keywords| |source, testcase
https://bugs.winehq.org/show_bug.cgi?id=54376
Jinoh Kang jinoh.kang.kr@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |RESOLVED Fixed by SHA1| |876742bf2bf23765cd8a845a20b | |297cdf7803c67 Resolution|--- |FIXED
--- Comment #1 from Jinoh Kang jinoh.kang.kr@gmail.com --- Fixed in 876742bf2bf23765cd8a845a20b297cdf7803c67.
https://bugs.winehq.org/show_bug.cgi?id=54376
Alexandre Julliard julliard@winehq.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED
--- Comment #2 from Alexandre Julliard julliard@winehq.org --- Closing bugs fixed in 8.1.
https://bugs.winehq.org/show_bug.cgi?id=54376
Michael Stefaniuc mstefani@winehq.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Target Milestone|--- |8.0.x
https://bugs.winehq.org/show_bug.cgi?id=54376
Michael Stefaniuc mstefani@winehq.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Target Milestone|8.0.x |---
--- Comment #3 from Michael Stefaniuc mstefani@winehq.org --- Removing the 8.0.x milestone from bug fixes included in 8.0.1.