Red Hat Bugzilla – Bug 841249
__pmDecodeText heap overflow
Last modified: 2012-08-20 00:00:20 EDT
This is very similar to the __pmDecodeInstanceReq overflow (bug 841240). buflen needs to be checked against the PDU size, and negative values need to be rejected.
This is not directly exposed through pmcd.
Ken requested assignment, thanks.
Created attachment 600704 [details]
Resolve issues in decoding PCP text PDUs
(In reply to comment #2)
> Created attachment 600704 [details]
> Resolve issues in decoding PCP text PDUs
This looks okay, with the same caveat as in bug 841240.
This issue has been addressed in pcp-3.6.5
This issue was addressed in Fedora and EPEL via the following security updates: