Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 147078 Details for
Bug 214068
net-print/cups <1.2.12-r7 Multiple vulnerabilities (CVE-2008-{0053,1373})
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
cups-1.2.12-CVE-2008-0053.patch
cups-1.2.12-CVE-2008-0053.patch (text/plain), 1.47 KB, created by
Robert Buchholz (RETIRED)
on 2008-03-24 02:05:24 UTC
(
hide
)
Description:
cups-1.2.12-CVE-2008-0053.patch
Filename:
MIME Type:
Creator:
Robert Buchholz (RETIRED)
Created:
2008-03-24 02:05:24 UTC
Size:
1.47 KB
patch
obsolete
>Index: cups-1.2.12/filter/hpgl-input.c >=================================================================== >--- cups-1.2.12.orig/filter/hpgl-input.c >+++ cups-1.2.12/filter/hpgl-input.c >@@ -56,6 +56,7 @@ ParseCommand(FILE *fp, /* I - File to > i; /* Looping var */ > char buf[262144], /* String buffer */ > *bufptr; /* Pointer into buffer */ >+ float temp; /* Temporary parameter value */ > static param_t p[MAX_PARAMS]; /* Parameter buffer */ > > >@@ -220,10 +221,10 @@ ParseCommand(FILE *fp, /* I - File to > case '-' : > case '+' : > ungetc(ch, fp); >- fscanf(fp, "%f", &(p[num_params].value.number)); >- if (num_params < MAX_PARAMS) >+ if (fscanf(fp, "%f", &temp) == 1 && num_params < MAX_PARAMS) > { >- p[num_params].type = PARAM_RELATIVE; >+ p[num_params].type = PARAM_RELATIVE; >+ p[num_params].value.number = temp; > num_params ++; > } > break; >@@ -239,10 +240,10 @@ ParseCommand(FILE *fp, /* I - File to > case '9' : > case '.' : > ungetc(ch, fp); >- fscanf(fp, "%f", &(p[num_params].value.number)); >- if (num_params < MAX_PARAMS) >+ if (fscanf(fp, "%f", &temp) == 1 && num_params < MAX_PARAMS) > { >- p[num_params].type = PARAM_ABSOLUTE; >+ p[num_params].type = PARAM_ABSOLUTE; >+ p[num_params].value.number = temp; > num_params ++; > } > break;
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 214068
:
146667
|
146668
|
146714
|
146721
| 147078 |
147080