rpms / texlive

Clone
Source Code
GIT

Blame SOURCES/texlive-base-20190410-CVE-2019-19601.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta c7-ppc64le c8 c8-beta c8s c9 c9-beta
  1.   c9-beta
  2.   SOURCES
  3.   texlive-base-20190410-CVE-2019-19601.patch
Blob History Raw
0067d1 
diff -up texlive-base-20190410/source/texk/detex/detex-src/detex.l.me texlive-base-20190410/source/texk/detex/detex-src/detex.l
0067d1 
--- texlive-base-20190410/source/texk/detex/detex-src/detex.l.me	2020-02-05 12:54:36.100840384 +0100
0067d1 
+++ texlive-base-20190410/source/texk/detex/detex-src/detex.l	2020-02-05 13:00:28.476320773 +0100
0067d1 
@@ -898,10 +898,10 @@ TexOpen(char *sbFile)
0067d1 
 #else
0067d1 
 	    if (*sbFile == '/') {	/* absolute path */
0067d1 
 #endif
0067d1 
-		(void)sprintf(sbFullPath, "%s", sbFile);
0067d1 
+		(void)snprintf(sbFullPath, PATH_MAX-1, "%s", sbFile);
0067d1 
 		iPath = csbInputPaths;	/* only check once */
0067d1 
 	    } else
0067d1 
-		(void)sprintf(sbFullPath, "%s/%s", rgsbInputPaths[iPath], sbFile);
0067d1 
+		(void)snprintf(sbFullPath, PATH_MAX-1, "%s/%s", rgsbInputPaths[iPath], sbFile);
0067d1 
 #ifdef OS2
0067d1 
 	    pch = sbFullPath;
0067d1 
 	    while (pch = strchr(pch, '\\'))

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation