Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 38972 Details for
Bug 62618
app-arch/lha: multiple vulnerabilities
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
RH patch 3
lha-dir_length_bounds_check.patch (text/plain), 556 bytes, created by
Matthias Geerdsen (RETIRED)
on 2004-09-05 05:07:58 UTC
(
hide
)
Description:
RH patch 3
Filename:
MIME Type:
Creator:
Matthias Geerdsen (RETIRED)
Created:
2004-09-05 05:07:58 UTC
Size:
556 bytes
patch
obsolete
>--- src/header.c 2002-07-19 17:23:58.000000000 +0900 >+++ src/header.c 2004-06-16 09:49:23.000000000 +0900 >@@ -648,8 +648,17 @@ > } > > if (dir_length) { >+ if ((dir_length + name_length) > sizeof(dirname)) { >+ fprintf(stderr, "Insufficient buffer size\n"); >+ exit(112); >+ } > strcat(dirname, hdr->name); >- strcpy(hdr->name, dirname); >+ >+ if ((dir_length + name_length) > sizeof(hdr->name)) { >+ fprintf(stderr, "Insufficient buffer size\n"); >+ exit(112); >+ } >+ strncpy(hdr->name, dirname, sizeof(hdr->name)); > name_length += dir_length; > }
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=38972">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 62618
:
38971
| 38972 |
38973
|
38975
