Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 201642 Details for
Bug 281955
<perl-core/Compress-Raw-Bzip2-2.020: Off-by-one buffer overflow (CVE-2009-1884)
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
CVE-2009-1884.patch
CVE-2009-1884.patch (text/plain), 801 bytes, created by
Robert Buchholz (RETIRED)
on 2009-08-18 19:18:38 UTC
(
hide
)
Description:
CVE-2009-1884.patch
Filename:
MIME Type:
Creator:
Robert Buchholz (RETIRED)
Created:
2009-08-18 19:18:38 UTC
Size:
801 bytes
patch
obsolete
>>From 123e2c53430273c8f2dc6337ff187ee6218fddbe Mon Sep 17 00:00:00 2001 >From: Niko Tyni <ntyni@debian.org> >Date: Mon, 15 Jun 2009 00:53:46 +0300 >Subject: [PATCH] Fix a buffer overflow in bzinflate() > >--- > Bzip2.xs | 2 +- > 1 files changed, 1 insertions(+), 1 deletions(-) > >diff --git a/Bzip2.xs b/Bzip2.xs >index d936495..b85f8b8 100644 >--- a/Bzip2.xs >+++ b/Bzip2.xs >@@ -753,7 +753,7 @@ bzinflate (s, buf, output) > > if (s->stream.avail_out == 0) { > /* out of space in the output buffer so make it bigger */ >- Sv_Grow(output, SvLEN(output) + bufinc) ; >+ Sv_Grow(output, SvLEN(output) + bufinc +1) ; > cur_length += increment ; > s->stream.next_out = (char*) SvPVbyte_nolen(output) + cur_length ; > increment = bufinc ; >-- >1.5.6.5 >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=201642">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 281955
: 201642
