rpms/ssmtp/F-7 ssmtp-unitialized-strdup.patch,NONE,1.1
Manuel Wolfshant
wolfy at fedoraproject.org
Fri Sep 12 19:41:14 UTC 2008
Author: wolfy
Update of /cvs/pkgs/rpms/ssmtp/F-7
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv7187
Added Files:
ssmtp-unitialized-strdup.patch
Log Message:
patch for CVE-2008-3962
ssmtp-unitialized-strdup.patch:
--- NEW FILE ssmtp-unitialized-strdup.patch ---
--- ssmtp-2.61/ssmtp.c.orig 2008-09-11 18:04:07.000000000 +0300
+++ ssmtp-2.61/ssmtp.c 2008-09-11 18:07:14.000000000 +0300
@@ -489,6 +489,11 @@ char *from_format(char *str, bool_t over
die("from_format() -- snprintf() failed");
}
}
+ else {
+ if(snprintf(buf, BUF_SZ, "%s", str) == -1) {
+ die("from_format() -- snprintf() failed");
+ }
+ }
}
#if 0
More information about the fedora-extras-commits
mailing list