Mahimman rauni a cikin aiwatar da aikin memcpy don ARMv7 daga Glibc
Masu binciken tsaro daga Cisco sun bayyana cikakkun bayanai game da rauni (CVE-2020-6096) a cikin aiwatar da aikin memcpy () da aka bayar a Glibc don dandalin 32-bit ARMv7. Matsalar tana faruwa ne ta hanyar kuskuren sarrafa ma'auni mara kyau na siga wanda ke ƙayyade girman yankin da aka kwafi, saboda amfani da haɓaka haɓakawa na taro wanda ke sarrafa sa hannu na lamba 32-bit. Kiran memcpy () akan tsarin ARMv7 tare da sakamako mara kyau a cikin kwatanta ƙimar da ba daidai ba da […]