Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 139967 Details for
Bug 203777
dev-libs/libcdio < 0.78.2-r4 Buffer overflow via long filename in Joliet (CVE-2007-6613)
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
Buffer patch with correction for +1 in the wrong place
libcdio.patch (text/plain), 1.41 KB, created by
Devon Miller
on 2008-01-03 13:24:39 UTC
(
hide
)
Description:
Buffer patch with correction for +1 in the wrong place
Filename:
MIME Type:
Creator:
Devon Miller
Created:
2008-01-03 13:24:39 UTC
Size:
1.41 KB
patch
obsolete
>diff -Naur libcdio-0.78.2-orig/work/libcdio-0.78.2/src/cd-info.c libcdio-0.78.2/work/libcdio-0.78.2/src/cd-info.c >--- libcdio-0.78.2-orig/work/libcdio-0.78.2/src/cd-info.c 2006-03-17 14:37:08.000000000 -0500 >+++ libcdio-0.78.2/work/libcdio-0.78.2/src/cd-info.c 2008-01-03 07:55:27.000000000 -0500 >@@ -539,7 +539,7 @@ > iso9660_stat_t *p_statbuf = _cdio_list_node_data (entnode); > char *psz_iso_name = p_statbuf->filename; > char _fullname[4096] = { 0, }; >- char *translated_name = (char *) alloca(strlen(psz_iso_name+1)); >+ char *translated_name = (char *) alloca(strlen(psz_iso_name)+1); > > if (yep != p_statbuf->rr.b3_rock || 1 == opts.no_rock_ridge) { > iso9660_name_translate_ext(psz_iso_name, translated_name, >diff -Naur libcdio-0.78.2-orig/work/libcdio-0.78.2/src/iso-info.c libcdio-0.78.2/work/libcdio-0.78.2/src/iso-info.c >--- libcdio-0.78.2-orig/work/libcdio-0.78.2/src/iso-info.c 2006-03-17 14:37:08.000000000 -0500 >+++ libcdio-0.78.2/work/libcdio-0.78.2/src/iso-info.c 2007-12-30 10:49:50.000000000 -0500 >@@ -224,7 +224,7 @@ > iso9660_stat_t *p_statbuf = _cdio_list_node_data (entnode); > char *psz_iso_name = p_statbuf->filename; > char _fullname[4096] = { 0, }; >- char *translated_name = (char *) alloca(strlen(psz_iso_name+1)); >+ char *translated_name = (char *) alloca(strlen(psz_iso_name)+1); > > > if (yep != p_statbuf->rr.b3_rock || 1 == opts.no_rock_ridge) {
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 203777
:
139644
|
139967
|
140011