Dia format string vulnerabilities (correction)
Stanislav Brabec
sbrabec at suse.cz
Tue May 23 15:27:58 UTC 2006
Hans de Goede writes:
> Hi all,
>
> I was a bit short on time when I mailed my previous mail on this, so I
> didn't test (I didn't even compile) the patch. It turns out my previous
> patch contained one cut and paste error causing compilation to fail.
>
> The attached patch fixes this and has been tested.
And maybe these two extra chunks (at least in 0.94).
Found by:
grep '\(message_\(error\|warning\)\|g_\(print\|message\|warning\)\|dia_assert_true\) *([^_"]' $(find -name '*.c')
--
Best Regards / S pozdravem,
Stanislav Brabec
software developer
---------------------------------------------------------------------
SuSE CR, s. r. o. e-mail: sbrabec at suse.cz
Drahobejlova 27 tel: +420 296 542 382
190 00 Praha 9 fax: +420 296 542 374
Czech Republic http://www.suse.cz/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dia-cve-2006-2453-addon.patch
Type: text/x-patch
Size: 554 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-security-list/attachments/20060523/c10db442/attachment.bin>
More information about the Fedora-security-list
mailing list