rpms/ssmtp/EL-5 ssmtp-unitialized-strdup.patch,NONE,1.1
Manuel Wolfshant
wolfy at fedoraproject.org
Fri Sep 12 19:43:02 UTC 2008
- Previous message (by thread): rpms/ssmtp/FC-6 ssmtp-unitialized-strdup.patch,NONE,1.1
- Next message (by thread): rpms/kde-l10n/F-9 .cvsignore, 1.10, 1.11 kde-l10n.spec, 1.35, 1.36 sources, 1.12, 1.13 subdirs-kde-l10n, 1.6, 1.7
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: wolfy
Update of /cvs/pkgs/rpms/ssmtp/EL-5
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv7403
Added Files:
ssmtp-unitialized-strdup.patch
Log Message:
patch for CVE-2008-3962
ssmtp-unitialized-strdup.patch:
--- NEW FILE ssmtp-unitialized-strdup.patch ---
--- ssmtp-2.61/ssmtp.c.orig 2008-09-11 18:04:07.000000000 +0300
+++ ssmtp-2.61/ssmtp.c 2008-09-11 18:07:14.000000000 +0300
@@ -489,6 +489,11 @@ char *from_format(char *str, bool_t over
die("from_format() -- snprintf() failed");
}
}
+ else {
+ if(snprintf(buf, BUF_SZ, "%s", str) == -1) {
+ die("from_format() -- snprintf() failed");
+ }
+ }
}
#if 0
- Previous message (by thread): rpms/ssmtp/FC-6 ssmtp-unitialized-strdup.patch,NONE,1.1
- Next message (by thread): rpms/kde-l10n/F-9 .cvsignore, 1.10, 1.11 kde-l10n.spec, 1.35, 1.36 sources, 1.12, 1.13 subdirs-kde-l10n, 1.6, 1.7
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list