Blame SOURCES/0067-curl-7.29.0-CVE-2018-16842.patch
|
 |
9d7d3f |
From 1a7533244a1e158ee071e821bbb05cb31c16d25e Mon Sep 17 00:00:00 2001
|
|
|
9d7d3f |
From: Daniel Stenberg <daniel@haxx.se>
|
|
|
9d7d3f |
Date: Sun, 28 Oct 2018 01:33:23 +0200
|
|
|
9d7d3f |
Subject: [PATCH] voutf: fix bad arethmetic when outputting warnings to stderr
|
|
|
9d7d3f |
|
|
|
9d7d3f |
CVE-2018-16842
|
|
|
9d7d3f |
Reported-by: Brian Carpenter
|
|
|
9d7d3f |
Bug: https://curl.haxx.se/docs/CVE-2018-16842.html
|
|
|
9d7d3f |
|
|
|
9d7d3f |
Upstream-commit: d530e92f59ae9bb2d47066c3c460b25d2ffeb211
|
|
|
9d7d3f |
Signed-off-by: Kamil Dudka <kdudka@redhat.com>
|
|
|
9d7d3f |
---
|
|
|
9d7d3f |
src/tool_msgs.c | 4 ++--
|
|
|
9d7d3f |
1 file changed, 2 insertions(+), 2 deletions(-)
|
|
|
9d7d3f |
|
|
|
9d7d3f |
diff --git a/src/tool_msgs.c b/src/tool_msgs.c
|
|
|
9d7d3f |
index 80fdf4e..ce47e9a 100644
|
|
|
9d7d3f |
--- a/src/tool_msgs.c
|
|
|
9d7d3f |
+++ b/src/tool_msgs.c
|
|
|
9d7d3f |
@@ -67,8 +67,8 @@ void warnf(struct Configurable *config, const char *fmt, ...)
|
|
|
9d7d3f |
|
|
|
9d7d3f |
(void)fwrite(ptr, cut + 1, 1, config->errors);
|
|
|
9d7d3f |
fputs("\n", config->errors);
|
|
|
9d7d3f |
- ptr += cut+1; /* skip the space too */
|
|
|
9d7d3f |
- len -= cut;
|
|
|
9d7d3f |
+ ptr += cut + 1; /* skip the space too */
|
|
|
9d7d3f |
+ len -= cut + 1;
|
|
|
9d7d3f |
}
|
|
|
9d7d3f |
else {
|
|
|
9d7d3f |
fputs(ptr, config->errors);
|
|
|
9d7d3f |
--
|
|
|
9d7d3f |
2.17.2
|
|
|
9d7d3f |
|