Blame SOURCES/0067-curl-7.29.0-CVE-2018-16842.patch

0d1c57
From 1a7533244a1e158ee071e821bbb05cb31c16d25e Mon Sep 17 00:00:00 2001
0d1c57
From: Daniel Stenberg <daniel@haxx.se>
0d1c57
Date: Sun, 28 Oct 2018 01:33:23 +0200
0d1c57
Subject: [PATCH] voutf: fix bad arethmetic when outputting warnings to stderr
0d1c57
0d1c57
CVE-2018-16842
0d1c57
Reported-by: Brian Carpenter
0d1c57
Bug: https://curl.haxx.se/docs/CVE-2018-16842.html
0d1c57
0d1c57
Upstream-commit: d530e92f59ae9bb2d47066c3c460b25d2ffeb211
0d1c57
Signed-off-by: Kamil Dudka <kdudka@redhat.com>
0d1c57
---
0d1c57
 src/tool_msgs.c | 4 ++--
0d1c57
 1 file changed, 2 insertions(+), 2 deletions(-)
0d1c57
0d1c57
diff --git a/src/tool_msgs.c b/src/tool_msgs.c
0d1c57
index 80fdf4e..ce47e9a 100644
0d1c57
--- a/src/tool_msgs.c
0d1c57
+++ b/src/tool_msgs.c
0d1c57
@@ -67,8 +67,8 @@ void warnf(struct Configurable *config, const char *fmt, ...)
0d1c57
 
0d1c57
         (void)fwrite(ptr, cut + 1, 1, config->errors);
0d1c57
         fputs("\n", config->errors);
0d1c57
-        ptr += cut+1; /* skip the space too */
0d1c57
-        len -= cut;
0d1c57
+        ptr += cut + 1; /* skip the space too */
0d1c57
+        len -= cut + 1;
0d1c57
       }
0d1c57
       else {
0d1c57
         fputs(ptr, config->errors);
0d1c57
-- 
0d1c57
2.17.2
0d1c57