[v6] stdio-common: Fix buffer overflow in scanf %mc [BZ #34008]

Return-Path: <libc-alpha-bounces~patchwork=sourceware.org@sourceware.org>
X-Original-To: patchwork@sourceware.org
Delivered-To: patchwork@sourceware.org
Received: from vm01.sourceware.org (localhost [127.0.0.1])
	by sourceware.org (Postfix) with ESMTP id 62B584AA3971
	for <patchwork@sourceware.org>; Sat, 18 Apr 2026 06:49:33 +0000 (GMT)
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 62B584AA3971
Authentication-Results: sourceware.org;
	dkim=pass (2048-bit key,
 unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256
 header.s=20251104 header.b=nx8ZZcX2
X-Original-To: libc-alpha@sourceware.org
Delivered-To: libc-alpha@sourceware.org
Received: from mail-dy1-x132c.google.com (mail-dy1-x132c.google.com
 [IPv6:2607:f8b0:4864:20::132c])
 by sourceware.org (Postfix) with ESMTPS id 3EA654AA51FD
 for <libc-alpha@sourceware.org>; Sat, 18 Apr 2026 06:49:01 +0000 (GMT)
DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 3EA654AA51FD
Authentication-Results: sourceware.org;
 dmarc=pass (p=none dis=none) header.from=gmail.com
Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=gmail.com
ARC-Filter: OpenARC Filter v1.0.0 sourceware.org 3EA654AA51FD
Authentication-Results: server2.sourceware.org;
 arc=none smtp.remote-ip=2607:f8b0:4864:20::132c
ARC-Seal: i=1; a=rsa-sha256; d=sourceware.org; s=key; t=1776494941; cv=none;
 b=NxI0nfsQ/N2C9Ng3RTQzfI3m90ynqvuinhGni2jqAioZ1wU2VFQbmzYjvCCu3U5d7TnXLXGV3viWHh8CCy5b2bm9HAxgbSDF9XUBWPGVJ6TlcmTcStP9bMipCJGr6WmTGnCyWe391xmeFUniV/dVrTsW2xI5jGOouuC0YtVmJ2U=
ARC-Message-Signature: i=1; a=rsa-sha256; d=sourceware.org; s=key;
 t=1776494941; c=relaxed/simple;
 bh=U75kx1SiA/S9iwROxXQrVYdsJAOwIqAhRkke0NQ7FYY=;
 h=DKIM-Signature:From:To:Subject:Date:Message-ID:MIME-Version;
 b=Kxp3yJv2JLG+tkBrHdPi5bs0rFjbYglZfTB9XqmGz6H2woNpbWVkvIoWnhyXnnxEwVa1FaNnOwshTjJkJd8qslL3ypkJYUbxyqzmaybm6dKdly2NmognQH2iQwWfqZbjSVpojPrh6rweG72yJxL+A1uLHWcVfCInSI52IJk9TCw=
ARC-Authentication-Results: i=1; server2.sourceware.org
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 3EA654AA51FD
Received: by mail-dy1-x132c.google.com with SMTP id
 5a478bee46e88-2d832f2f44cso1598703eec.0
 for <libc-alpha@sourceware.org>; Fri, 17 Apr 2026 23:49:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=gmail.com; s=20251104; t=1776494940; x=1777099740; darn=sourceware.org;
 h=content-transfer-encoding:mime-version:references:in-reply-to
 :message-id:date:subject:cc:to:from:from:to:cc:subject:date
 :message-id:reply-to;
 bh=9SPmJ0h2yky0JJq/NREk0v+kZTW2kPE22u2X9cKkXHE=;
 b=nx8ZZcX2p6L/DEC5SZi827FhFHeR/yM3jr7lLyiTR6BXK2/XE9euoU7qNVx2/vVsRA
 SDEqknOuF74mgpZu0zJx+bjzgeAJfB4pZ3Xlr7pS1HKpjukqF6V0SXDUpEC+nwN+cJtI
 6u7O+Bx335K7XRzwrtW3ePIS2Je/FoZPjXzzE+7p6tc1VpKlvX5ZFurQxc2HhKmMzfDx
 XcH3qyrYGJ94tR4lAwMVZlx9jvr0gatGaxGkOjaSD7vFi0x/owIwdq6R9bDZgF51a/Lg
 0E3mUETs8LwjgVYjOa7HSoc1wtWMNdEgb+jVHGS97oUyWrT2TkSdpdwQdQ/IkEOX685e
 y1oA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20251104; t=1776494940; x=1777099740;
 h=content-transfer-encoding:mime-version:references:in-reply-to
 :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from
 :to:cc:subject:date:message-id:reply-to;
 bh=9SPmJ0h2yky0JJq/NREk0v+kZTW2kPE22u2X9cKkXHE=;
 b=rEPE0HyahXdcQO28HhaVitS6Cc/+RByx1p7CVJPCIJf7/Y7aakRRsC0T78hHk5jhaf
 07bj3qk+ez7RVTabdVb74GaHaFk70RVu9nX32uaG/3FKxlu/a5HEvkl4xM2IFl5LuzLa
 o2RKtsDKjWihhqE97tn1hQOPv1slD2XPAerYEuCmuem0XcKNqHr7ZepMqllmAVy8w7mo
 9zHAFBj1/iHtOreXqEXuqyuYE514EQqaaHmBedlVg3JoTl3j8EM8m4+WRi++CtzVW6n/
 J4G3JIHkvTt8y45Nn6vbnOVE0yBICV8e4stssNo7Lzf3pRVqhcSjAGeXjIbh9RbbtQnu
 KK1Q==
X-Gm-Message-State: AOJu0YyarpuaiMosvQ4ik9tnaEL1ry6mfYXlaSsItzgL6xZfBDQjD4yD
 h8e00WbAraHuSzkCIwyRZHbr1gIq67kt+ZD9rD/CT0jQD2fojk4EVeK1NqIGq/ka
X-Gm-Gg: AeBDiev6oszaFSK8A3PeuL3bQS8xdvmS0SGqk+A1gWG6ilTUDDNkJxnsC+jvw/yhX1Q
 QNoov+uz6az9sgkSrYpIrHJHhaLZ0nmRvviF9dAnatfYIq1EuXXGpoYjF087hlx4HoqRbzEkh9L
 ihfmoeBa3vz1fNnPx9mPCpAehlErHiSlAnaq6Q0362268aRgASAkAAFf+KIyhTkwIp9P8ZHm6B8
 nG7pPdZOfsyDo2EtphQwhRMLGdmQYP484uL2lFNpkEnHz3sO0rZ3qgmkgX74idlMOUm6h+pKpEq
 xVK0EoKGhlv8S9dTxDBBrVHKZQLMDRRc0RWN4y+EzUC0h6UO+SSKX894mGR8honqHc6+0mZaWJd
 Y73k7+rqCF7MGGXks74ajYvv6Aib7/pxjQJyep+Gx9foO9VxJ3Rz5G/WAu5VK2QpktokKeLMnfi
 zLPHQiJC27OsBvYdQvXjWGpfscs7kgxJs3pUq4jTUt5042X6xt6lXkCX2RDlqqWiLGucOloOnwc
 yHXh0l3KeUBD9ZevH+qLzk4bdrhntgU2sp9ZoHvVLqRVtBqTiiUStwuVgEaTaYdG3FYN9EP3efl
 bDbiIYksjQ==
X-Received: by 2002:a05:7301:4083:b0:2d8:b1ce:d3d8 with SMTP id
 5a478bee46e88-2e4526dd448mr2601122eec.0.1776494940161;
 Fri, 17 Apr 2026 23:49:00 -0700 (PDT)
Received: from localhost ([23.94.240.252]) by smtp.gmail.com with UTF8SMTPSA
 id
 5a478bee46e88-2e53d9b056fsm7285756eec.29.2026.04.17.23.48.58
 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
 Fri, 17 Apr 2026 23:48:59 -0700 (PDT)
From: Rocket Ma <marocketbd@gmail.com>
To: Carlos O'Donell <carlos@redhat.com>
Cc: libc-alpha@sourceware.org,
	Florian Weimer <fw@deneb.enyo.de>
Subject: [PATCH v6] stdio-common: Fix buffer overflow in scanf %mc [BZ #34008]
Date: Fri, 17 Apr 2026 23:48:41 -0700
Message-ID: <20260418064841.3299863-1-marocketbd@gmail.com>
X-Mailer: git-send-email 2.47.3
In-Reply-To: <e48ff256-40b9-4fc4-9898-8bce0e6b4651@redhat.com>
References: 
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-10.0 required=5.0 tests=BAYES_00, DKIM_SIGNED,
 DKIM_VALID, DKIM_VALID_AU, DKIM_VALID_EF, FREEMAIL_FROM, GIT_PATCH_0,
 KAM_SHORT, RCVD_IN_DNSWL_NONE, SPF_HELO_NONE, SPF_PASS,
 TXREP autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on sourceware.org
X-BeenThere: libc-alpha@sourceware.org
X-Mailman-Version: 2.1.30
Precedence: list
List-Id: Libc-alpha mailing list <libc-alpha.sourceware.org>
List-Unsubscribe: <https://sourceware.org/mailman/options/libc-alpha>,
 <mailto:libc-alpha-request@sourceware.org?subject=unsubscribe>
List-Archive: <https://sourceware.org/pipermail/libc-alpha/>
List-Post: <mailto:libc-alpha@sourceware.org>
List-Help: <mailto:libc-alpha-request@sourceware.org?subject=help>
List-Subscribe: <https://sourceware.org/mailman/listinfo/libc-alpha>,
 <mailto:libc-alpha-request@sourceware.org?subject=subscribe>
Errors-To: libc-alpha-bounces~patchwork=sourceware.org@sourceware.org