Blame SOURCES/wordnet-3.0-CVE-2008-2149.patch
|
|
f3e103 |
--- wordnet-3.0.orig/src/wn.c
|
|
|
f3e103 |
+++ wordnet-3.0/src/wn.c
|
|
|
f3e103 |
@@ -206,7 +206,8 @@
|
|
|
f3e103 |
outsenses += do_search(av[1], optptr->pos, optptr->search,
|
|
|
f3e103 |
whichsense, optptr->label);
|
|
|
f3e103 |
} else {
|
|
|
f3e103 |
- sprintf(tmpbuf, "wn: invalid search option: %s\n", av[j]);
|
|
|
f3e103 |
+ /* Fix CVE-2008-2149: buffer overflows Andreas Tille <tille@debian.org> */
|
|
|
f3e103 |
+ sprintf(tmpbuf, "wn: invalid search option: %.200s\n", av[j]);
|
|
|
f3e103 |
display_message(tmpbuf);
|
|
|
f3e103 |
errcount++;
|
|
|
f3e103 |
}
|