Re: patch: integer overflows and oob memory access

2014-11-25 Thread Todd C. Miller
On Tue, 25 Nov 2014 16:48:23 +0100, Tobias Stoeckmann wrote: > it is possible to overflow line numbers in patch; this diff cares about > the lines specified in diff files. If such an overflow happens with > unified diffs, out of bound memory access can occur. This all looks good to me. OK mille

patch: integer overflows and oob memory access

2014-11-25 Thread Tobias Stoeckmann
Hi, it is possible to overflow line numbers in patch; this diff cares about the lines specified in diff files. If such an overflow happens with unified diffs, out of bound memory access can occur. If you have a 32 bit system, take this one (LONG_MAX = 2^31 - 1): --- a Sat Nov 15 00:25:29 2014