wok-4.x diff glibc/stuff/patches/glibc-2.22-CVE-2017-15804.patch @ rev 12476
Up glibc (2.22) with CVE patchs
| author | Stanislas Leduc <shann@slitaz.org> |
|---|---|
| date | Wed Mar 15 11:41:38 2023 +0000 (19 months ago) |
| parents | |
| children |
line diff
1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000 1.2 +++ b/glibc/stuff/patches/glibc-2.22-CVE-2017-15804.patch Wed Mar 15 11:41:38 2023 +0000 1.3 @@ -0,0 +1,26 @@ 1.4 +Based on: 1.5 + 1.6 +From a159b53fa059947cc2548e3b0d5bdcf7b9630ba8 Mon Sep 17 00:00:00 2001 1.7 +From: Paul Eggert <eggert@cs.ucla.edu> 1.8 +Date: Sun, 22 Oct 2017 10:00:57 +0200 1.9 +Subject: [PATCH] glob: Fix buffer overflow during GLOB_TILDE unescaping 1.10 + 1.11 +diff -Naur a/posix/glob.c b/posix/glob.c 1.12 +--- a/posix/glob.c 2017-12-07 18:57:12.370562751 +0530 1.13 ++++ b/posix/glob.c 2017-12-07 18:57:51.246561905 +0530 1.14 +@@ -848,11 +848,11 @@ 1.15 + char *p = mempcpy (newp, dirname + 1, 1.16 + unescape - dirname - 1); 1.17 + char *q = unescape; 1.18 +- while (*q != '\0') 1.19 ++ while (q != end_name) 1.20 + { 1.21 + if (*q == '\\') 1.22 + { 1.23 +- if (q[1] == '\0') 1.24 ++ if (q + 1 == end_name) 1.25 + { 1.26 + /* "~fo\\o\\" unescape to user_name "foo\\", 1.27 + but "~fo\\o\\/" unescape to user_name 1.28 + 1.29 +