Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 102910 Details for
Bug 154650
net-ftp/proftpd: Remote exec of arbitrary code (CommandBufferSize DoS CVE-2006-5815, sreplace() off-by-one error CVE-2006-6171, and mod_tls stack overflow CVE-2006-6170)
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
mod_tls.patchj as used by OpenPKG
proftd_mod_tls.patch (text/plain), 382 bytes, created by
Stefan Cornelius (RETIRED)
on 2006-11-28 05:42:54 UTC
(
hide
)
Description:
mod_tls.patchj as used by OpenPKG
Filename:
MIME Type:
Creator:
Stefan Cornelius (RETIRED)
Created:
2006-11-28 05:42:54 UTC
Size:
382 bytes
patch
obsolete
>Index: contrib/mod_tls.c >--- contrib/mod_tls.c.orig 2005-11-08 18:59:49 +0100 >+++ contrib/mod_tls.c 2006-11-15 17:54:43 +0100 >@@ -2421,6 +2421,8 @@ > datalen = BIO_get_mem_data(mem, &data); > > if (data) { >+ if (datalen > sizeof(buf)-1) >+ datalen = sizeof(buf)-1; > memset(&buf, '\0', sizeof(buf)); > memcpy(buf, data, datalen); > buf[datalen] = '\0';
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=102910">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 154650
: 102910
