[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
man-db docs/ChangeLog src/manp.c
From: |
Colin Watson |
Subject: |
man-db docs/ChangeLog src/manp.c |
Date: |
Wed, 30 Jul 2003 15:50:02 -0400 |
CVSROOT: /cvsroot/man-db
Module name: man-db
Branch:
Changes by: Colin Watson <address@hidden> 03/07/30 15:50:02
Modified files:
docs : ChangeLog
src : manp.c
Log message:
Fix vulnerability 1 posted by Vade 79 <address@hidden> on
BugTraq, Message-ID:
<address@hidden>.
* src/manp.c (add_to_dirlist): Limit all sscanf() calls to the
appropriate buffer size. Leave a TODO to say that a replacement
that allocates its own memory would be welcome.
CVSWeb URLs:
http://savannah.gnu.org/cgi-bin/viewcvs/man-db/man-db/docs/ChangeLog.diff?tr1=1.342&tr2=1.343&r1=text&r2=text
http://savannah.gnu.org/cgi-bin/viewcvs/man-db/man-db/src/manp.c.diff?tr1=1.27&tr2=1.28&r1=text&r2=text
- man-db docs/ChangeLog src/manp.c,
Colin Watson <=