Taking another look at the git log, those bugs were fixed in 4.5.12.
not 4.5.11. So the "correction" was not needed, though it is
harmless (except insofar as I wrongly indicated you'd done something
incorrectly). Sorry about the mistake.
James.
Dmitry,
It turns out a small correction is needed: the part of the NEWS file
you edited describes bugs fixed in findutils-4.5.11 but not mentioned
in its NEWS.Not bugs fixed in the upcoming release.
Thanks,
James.
Thanks, I applied this directly (since you already have a copyright
assignment for findutils).
Sorry about the delay.
James.
On Thu, May 16, 2013 at 12:48 AM, Dmitry V. Levin wrote:
> * lib/buildcmd.c (bc_push_arg): Take prefix length into account
> to avoid state->argbuf overflow.
> * NEWS: M
ping?
On Thu, May 16, 2013 at 03:48:21AM +0400, Dmitry V. Levin wrote:
> * lib/buildcmd.c (bc_push_arg): Take prefix length into account
> to avoid state->argbuf overflow.
> * NEWS: Mention this fix.
> ---
>
> It would be a security issue if one could control factors triggering this
> bug, which
* lib/buildcmd.c (bc_push_arg): Take prefix length into account
to avoid state->argbuf overflow.
* NEWS: Mention this fix.
---
It would be a security issue if one could control factors triggering this
bug, which include a directory with thousands of files.
ChangeLog | 7 +++
NEWS
