rpms / file

Clone
Source Code
GIT

Blame SOURCES/file-5.11-CVE-2018-10360.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta c7-ppc64le c8 c8-beta c8s c9 c9-beta
  1.   89be671fdb66d8b0406d92ebb002e664d43ac50d
  2.   SOURCES
  3.   file-5.11-CVE-2018-10360.patch
Blob History Raw
89be67 
From 8616080aecf07436e80a27f68c336382c1d1c22d Mon Sep 17 00:00:00 2001
89be67 
From: Christos Zoulas <christos@zoulas.com>
89be67 
Date: Sat, 9 Jun 2018 16:00:06 +0000
89be67 
Subject: [PATCH] Avoid reading past the end of buffer (Rui Reis)
89be67
89be67 
Upstream-commit: a642587a9c9e2dd7feacdf513c3643ce26ad3c22
89be67 
Signed-off-by: Kamil Dudka <kdudka@redhat.com>
89be67 
---
89be67 
 src/readelf.c | 3 ++-
89be67 
 1 file changed, 2 insertions(+), 1 deletion(-)
89be67
89be67 
diff --git a/src/readelf.c b/src/readelf.c
89be67 
index 3df0836..d96a538 100644
89be67 
--- a/src/readelf.c
89be67 
+++ b/src/readelf.c
89be67 
@@ -966,7 +966,8 @@ core:
89be67
89be67 
 				cname = (unsigned char *)
89be67 
 				    &nbuf[doff + prpsoffsets(i)];
89be67 
-				for (cp = cname; *cp && isprint(*cp); cp++)
89be67 
+				for (cp = cname; cp < nbuf + size && *cp
89be67 
+				    && isprint(*cp); cp++)
89be67 
 					continue;
89be67 
 				/*
89be67 
 				 * Linux apparently appends a space at the end
89be67 
--
89be67 
2.14.4
89be67

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation