rpms/autofs/devel autofs-4.1.4-keylen-length-check.patch,NONE,1.1
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Wed Oct 26 19:40:58 UTC 2005
- Previous message (by thread): rpms/autofs/devel autofs-4.1.4-reentrant-syslog.patch, NONE, 1.1 autofs-4.1.4-deferred-syslog.patch, 1.1, NONE
- Next message (by thread): rpms/usermode/devel .cvsignore, 1.38, 1.39 sources, 1.41, 1.42 usermode.spec, 1.49, 1.50
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: jmoyer
Update of /cvs/dist/rpms/autofs/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv26824
Added Files:
autofs-4.1.4-keylen-length-check.patch
Log Message:
Fix buffer overflow with large key lengths.
autofs-4.1.4-keylen-length-check.patch:
lookup_file.c | 4 ++++
1 files changed, 4 insertions(+)
--- NEW FILE autofs-4.1.4-keylen-length-check.patch ---
Fix a buffer overflow with large key lengths.
-Jeff
diff -Nurp autofs-4.1.4.orig/modules/lookup_file.c autofs-4.1.4/modules/lookup_file.c
--- autofs-4.1.4.orig/modules/lookup_file.c 2005-04-06 23:14:23.000000000 +0800
+++ autofs-4.1.4/modules/lookup_file.c 2005-05-07 17:27:30.000000000 +0800
@@ -157,6 +157,10 @@ static int read_one(FILE *f, char *key,
break;
case st_compare:
+ if (kptr - key > KEY_MAX_LEN) {
+ state = st_badent;
+ break;
+ }
if (ch == '\n')
state = st_begin;
else if (isspace(ch) && !escape) {
- Previous message (by thread): rpms/autofs/devel autofs-4.1.4-reentrant-syslog.patch, NONE, 1.1 autofs-4.1.4-deferred-syslog.patch, 1.1, NONE
- Next message (by thread): rpms/usermode/devel .cvsignore, 1.38, 1.39 sources, 1.41, 1.42 usermode.spec, 1.49, 1.50
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-cvs-commits
mailing list