rpms/ssmtp/EL-4 ssmtp-unitialized-strdup.patch,NONE,1.1
Manuel Wolfshant
wolfy at fedoraproject.org
Fri Sep 12 19:37:31 UTC 2008
- Previous message (by thread): rpms/ql2500-firmware/devel LICENSE, NONE, 1.1 import.log, NONE, 1.1 ql2500-firmware.spec, NONE, 1.1 ql2500_fw.bin_mid, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Next message (by thread): rpms/ql2500-firmware/F-8 LICENSE, NONE, 1.1 ql2500-firmware.spec, NONE, 1.1 ql2500_fw.bin_mid, NONE, 1.1 sources, 1.1, 1.2
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: wolfy
Update of /cvs/pkgs/rpms/ssmtp/EL-4
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv5908
Added Files:
ssmtp-unitialized-strdup.patch
Log Message:
patch for CVE-2008-3962
ssmtp-unitialized-strdup.patch:
--- NEW FILE ssmtp-unitialized-strdup.patch ---
--- ssmtp-2.61/ssmtp.c.orig 2008-09-11 18:04:07.000000000 +0300
+++ ssmtp-2.61/ssmtp.c 2008-09-11 18:07:14.000000000 +0300
@@ -489,6 +489,11 @@ char *from_format(char *str, bool_t over
die("from_format() -- snprintf() failed");
}
}
+ else {
+ if(snprintf(buf, BUF_SZ, "%s", str) == -1) {
+ die("from_format() -- snprintf() failed");
+ }
+ }
}
#if 0
- Previous message (by thread): rpms/ql2500-firmware/devel LICENSE, NONE, 1.1 import.log, NONE, 1.1 ql2500-firmware.spec, NONE, 1.1 ql2500_fw.bin_mid, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Next message (by thread): rpms/ql2500-firmware/F-8 LICENSE, NONE, 1.1 ql2500-firmware.spec, NONE, 1.1 ql2500_fw.bin_mid, NONE, 1.1 sources, 1.1, 1.2
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list