rpms / file

Clone
Source Code
GIT

Blame SOURCES/file-5.33-CVE-2018-10360.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta c7-ppc64le c8 c8-beta c8s c9 c9-beta
  1.   0e166956e79aba2a0a3aca41149bce018ee19bae
  2.   SOURCES
  3.   file-5.33-CVE-2018-10360.patch
Blob History Raw
fd8bad 
From 8616080aecf07436e80a27f68c336382c1d1c22d Mon Sep 17 00:00:00 2001
fd8bad 
From: Christos Zoulas <christos@zoulas.com>
fd8bad 
Date: Sat, 9 Jun 2018 16:00:06 +0000
fd8bad 
Subject: [PATCH] Avoid reading past the end of buffer (Rui Reis)
fd8bad
fd8bad 
Upstream-commit: a642587a9c9e2dd7feacdf513c3643ce26ad3c22
fd8bad 
Signed-off-by: Kamil Dudka <kdudka@redhat.com>
fd8bad 
---
fd8bad 
 src/readelf.c | 3 ++-
fd8bad 
 1 file changed, 2 insertions(+), 1 deletion(-)
fd8bad
fd8bad 
diff --git a/src/readelf.c b/src/readelf.c
fd8bad 
index 3df0836..d96a538 100644
fd8bad 
--- a/src/readelf.c
fd8bad 
+++ b/src/readelf.c
fd8bad 
@@ -825,7 +825,8 @@ do_core_note(struct magic_set *ms, unsigned char *nbuf, uint32_t type,
fd8bad
fd8bad 
 				cname = (unsigned char *)
fd8bad 
 				    &nbuf[doff + prpsoffsets(i)];
fd8bad 
-				for (cp = cname; *cp && isprint(*cp); cp++)
fd8bad 
+				for (cp = cname; cp < nbuf + size && *cp
fd8bad 
+				    && isprint(*cp); cp++)
fd8bad 
 					continue;
fd8bad 
 				/*
fd8bad 
 				 * Linux apparently appends a space at the end
fd8bad 
--
fd8bad 
2.14.4
fd8bad

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation