rpms / wget

Clone
Source Code
GIT

Blame SOURCES/wget-1.14-CVE-2017-13089.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8 c8-beta c8-init-modify c8s c9 c9-beta
  1.   375c3db13a936a47e09e2d264b6c571657023958
  2.   SOURCES
  3.   wget-1.14-CVE-2017-13089.patch
Blob History Raw
375c3d 
@@ -, +, @@
375c3d 
 (CVE-2017-13089)
375c3d 
---
375c3d 
 src/http.c | 3 +++
375c3d 
 1 file changed, 3 insertions(+)
375c3d 
--- a/src/http.c
375c3d 
+++ a/src/http.c
375c3d 
@@ -973,6 +973,9 @@ skip_short_body (int fd, wgint contlen, bool chunked)
375c3d 
               remaining_chunk_size = strtol (line, &endl, 16);
375c3d 
               xfree (line);
375c3d
375c3d 
+              if (remaining_chunk_size < 0)
375c3d 
+                return false;
375c3d 
+
375c3d 
               if (remaining_chunk_size == 0)
375c3d 
                 {
375c3d 
                   line = fd_read_line (fd);
375c3d 
--

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation