rpms / wget

Clone
Source Code
GIT

Blame SOURCES/wget-1.14-CVE-2017-13089.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8 c8-beta c8-init-modify c8s c9 c9-beta
  1.   bc22e619552fbc1fade581b6b35cc9555c0f21e8
  2.   SOURCES
  3.   wget-1.14-CVE-2017-13089.patch
Blob History Raw
bc22e6 
@@ -, +, @@
bc22e6 
 (CVE-2017-13089)
bc22e6 
---
bc22e6 
 src/http.c | 3 +++
bc22e6 
 1 file changed, 3 insertions(+)
bc22e6 
--- a/src/http.c
bc22e6 
+++ a/src/http.c
bc22e6 
@@ -973,6 +973,9 @@ skip_short_body (int fd, wgint contlen, bool chunked)
bc22e6 
               remaining_chunk_size = strtol (line, &endl, 16);
bc22e6 
               xfree (line);
bc22e6
bc22e6 
+              if (remaining_chunk_size < 0)
bc22e6 
+                return false;
bc22e6 
+
bc22e6 
               if (remaining_chunk_size == 0)
bc22e6 
                 {
bc22e6 
                   line = fd_read_line (fd);
bc22e6 
--

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation