From: Rich Felker <dalias@aerifal.cx>
Date: Sat, 20 Jul 2013 00:00:11 +0000 (-0400)
Subject: harden realloc/free to detect simple overflows
X-Git-Url: http://nsz.repo.hu/git/?p=musl;a=commitdiff_plain;h=8389520ed5ad6f0033d6426e21ef653fa5ca26a4;hp=8389520ed5ad6f0033d6426e21ef653fa5ca26a4;ds=sidebyside

harden realloc/free to detect simple overflows

the sizes in the header and footer for a chunk should always match. if
they don't, the program has definitely invoked undefined behavior, and
the most likely cause is a simple overflow, either of a buffer in the
block being freed or the one just below it.

crashing here should not only improve security of buggy programs, but
also aid in debugging, since the crash happens in a context where you
have a pointer to the likely-overflowed buffer.
---