idl0r 14/04/16 20:56:57 Added: libxdg-basedir-1.2.0-buffer-overflow.patch Log: Revbump. Fix buffer overflow. (Portage version: 2.2.10/cvs/Linux x86_64, signed Manifest commit with key B427ABC8)
Revision Changes Path 1.1 dev-libs/libxdg-basedir/files/libxdg-basedir-1.2.0-buffer-overflow.patch file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/dev-libs/libxdg-basedir/files/libxdg-basedir-1.2.0-buffer-overflow.patch?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/dev-libs/libxdg-basedir/files/libxdg-basedir-1.2.0-buffer-overflow.patch?rev=1.1&content-type=text/plain Index: libxdg-basedir-1.2.0-buffer-overflow.patch =================================================================== >From 14e000f696ef8b83264b0ca4407669bdb365fb23 Mon Sep 17 00:00:00 2001 From: Timmy Weerwag <[email protected]> Date: Sun, 16 Mar 2014 17:54:14 +0100 Subject: [PATCH] Overflow bug Signed-off-by: Christian Ruppert <[email protected]> --- src/basedir.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/basedir.c b/src/basedir.c index 68ab879..1a2a8c4 100644 --- a/src/basedir.c +++ b/src/basedir.c @@ -574,7 +574,7 @@ static char * xdgGetRelativeHome(const char *envname, const char *relativefallba unsigned int homelen; if (!(home = xdgGetEnv("HOME"))) return NULL; - if (!(relhome = (char*)malloc((homelen = strlen(home))+fallbacklength))) return NULL; + if (!(relhome = (char*)malloc((homelen = strlen(home))+fallbacklength+1))) return NULL; memcpy(relhome, home, homelen); memcpy(relhome+homelen, relativefallback, fallbacklength+1); } -- 1.8.3.2
