Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 94940 Details for
Bug 144861
media-sound/streamripper remote buffer overflows (CVE-2006-3124)
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
streamripper.bufoflows.patch
streamripper.bufoflows.patch (text/plain), 1.05 KB, created by
Sune Kloppenborg Jeppesen (RETIRED)
on 2006-08-23 08:24:43 UTC
(
hide
)
Description:
streamripper.bufoflows.patch
Filename:
MIME Type:
Creator:
Sune Kloppenborg Jeppesen (RETIRED)
Created:
2006-08-23 08:24:43 UTC
Size:
1.05 KB
patch
obsolete
>--- lib/http.c.old 2005-04-09 06:06:15.000000000 +0200 >+++ lib/http.c 2006-08-15 20:59:49.000000000 +0200 >@@ -212,7 +212,7 @@ httplib_parse_sc_header(const char *url, > int rc; > char *start; > char versionbuf[64]; >- char stempbr[50]; >+ char stempbr[MAX_ICY_STRING]; > URLINFO url_info; > int url_path_len; > int content_type_by_url; >@@ -328,7 +328,7 @@ httplib_parse_sc_header(const char *url, > else if ((start = (char *)strstr(header, "SHOUTcast")) != NULL) { > strcpy(info->server, "SHOUTcast/"); > if ((start = (char *)strstr(start, "Server/")) != NULL) { >- sscanf(start, "Server/%[^<]<", versionbuf); >+ sscanf(start, "Server/%63[^<]<", versionbuf); > strcat(info->server, versionbuf); > } > >@@ -346,7 +346,7 @@ httplib_parse_sc_header(const char *url, > if (!info->server[0]) { > strcpy(info->server, "icecast/"); > if ((start = (char *)strstr(start, "version ")) != NULL) { >- sscanf(start, "version %[^<]<", versionbuf); >+ sscanf(start, "version %63[^<]<", versionbuf); > strcat(info->server, versionbuf); > } > }
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=94940">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 144861
:
94940
|
94954
|
94955
