Date published: 2017-06-19T12:29:00.657-04:00
Date last modified: 2017-06-29T15:01:44.430-04:00
CVSS Score: 7.5
Principal attack vector: NETWORK
Reference URL: http://cvsweb.netbsd.org/bsdweb.cgi/src/lib/libc/stdlib/qsort.c?rev=1.23&content-type=text/x-cvsweb-markup
Summary: The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort() to deterministically recurse N/4 times. This allows attackers to consume arbitrary amounts of stack memory and manipulate stack memory to assist in arbitrary code execution attacks. This affects NetBSD 7.1 and possibly earlier versions.