Hide Forgot
Description of problem: when appending requires a buffer of size 2^31+1 or larger, yajl gets stuck in an infloop It also will dereference NULL in numerous places upon failed malloc and realloc. Reported upstream: http://librelist.com/browser//yajl/2011/4/5/avoid-infloop-upon-buffer-append/ http://librelist.com/browser//yajl/2011/4/5/patch-add-assertions-to-avoid-dereferencing-null-upon-oom/ Version-Release number of selected component (if applicable): How reproducible: NA found via inspection, though I can write code to provoke the infloop Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Since RHEL 6.1 External Beta has begun, and this bug remains unresolved, it has been rejected as it is not proposed as exception or blocker. Red Hat invites you to ask your support representative to propose this request, if appropriate and relevant, in the next release of Red Hat Enterprise Linux.
Fixing this would effectively require rebasing yajl to the new upstream version which fixes the code to use size_t and do propr OOM chcking. This new version however is not ABI compatible, so not something that can be done in a RHEL update