|
From: | Richard Henderson |
Subject: | Re: [PATCH 23/23] configure: Prohibit variable-length allocations by using -Wvla CPPFLAG |
Date: | Fri, 7 May 2021 09:56:07 -0700 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.7.1 |
On 5/5/21 2:10 PM, Philippe Mathieu-Daudé wrote:
Now that we converted all variable-length allocations in the repository, add the -Wvla CPPFLAG to trigger a build failure if such allocation is used. This should help avoiding vulnerabilities such CVE-2021-3527 (see commit range 3f67e2e7f13..05a40b172e4). Inspired-by: Gerd Hoffmann<kraxel@redhat.com> Signed-off-by: Philippe Mathieu-Daudé<philmd@redhat.com> --- configure | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
Reviewed-by: Richard Henderson <richard.henderson@linaro.org> r~
[Prev in Thread] | Current Thread | [Next in Thread] |