Codebase list dante / 150b6fa
Fix a possible buffer underrun in httpproxy.c by bailing out immediately on a zero-sized read without doing buf[len - 1] = '\0'. Peter Pentchev 8 years ago
3 changed file(s) with 17 addition(s) and 0 deletion(s). Raw diff Collapse all Expand all
+2
-0
debian/changelog less more
7575 pages with man (an.tmac) ones
7676 * debian/patches/13-c-warnings.patch
7777 - fix some C compiler warnings, mainly related to printf format strings
78 * debian/patches/14-httpproxy-underrun.patch
79 - fix a possible buffer underrun in lib/httpproxy.c
7880 * debian/rules
7981 - comment out DH_VERBOSE
8082 - use quilt.make to apply and deapply patches
+14
-0
debian/patches/14-httpproxy-underrun.patch less more
0 Do not try to process a zero-length buffer at all, thus avoiding
1 a possible buffer underrun.
2
3 --- a/lib/httpproxy.c
4 +++ b/lib/httpproxy.c
5 @@ -104,6 +104,8 @@
6 eof = 1;
7 break;
8 }
9 + if (eof)
10 + break;
11
12 /*
13 * if last char we read is start of terminator,
+1
-0
debian/patches/series less more
99 11-linux-eccentricities.patch
1010 12-man-errors.patch
1111 13-c-warnings.patch
12 14-httpproxy-underrun.patch