Bugzilla – Attachment 22258 Details for
Bug 56630
VUL-0: CVE-2004-0500: gaim security audit
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
IDP Log In
|
Forgot Password
[patch]
the fix for STABLE
gaim-0.78-msn-security.diff (text/plain), 932 bytes, created by
Sebastian Krahmer
on 2004-07-19 17:39:10 UTC
(
hide
)
Description:
the fix for STABLE
Filename:
MIME Type:
Creator:
Sebastian Krahmer
Created:
2004-07-19 17:39:10 UTC
Size:
932 bytes
patch
obsolete
>--- msnslp.c.orig 2003-11-22 19:23:02.000000000 -0800 >+++ msnslp.c 2004-06-26 05:23:23.000000000 -0700 >@@ -224,13 +224,17 @@ > /* It's not valid. Kill this off. */ > char temp[32]; > const char *c; >+ size_t offset; > >+ memset(temp, 0, sizeof(temp)); > /* Eww */ > if ((c = strchr(status, '\r')) || (c = strchr(status, '\n')) || > (c = strchr(status, '\0'))) > { >- strncpy(temp, status, c - status); >- temp[c - status] = '\0'; >+ offset = c - status; >+ if (offset >= sizeof(temp)) >+ offset = sizeof(temp) - 1; >+ strncpy(temp, status, offset); > } > > gaim_debug_error("msn", "Received non-OK result: %s\n", temp); >--- msg.c.orig 2003-12-12 22:19:56.000000000 -0800 >+++ msg.c 2004-06-26 05:26:14.000000000 -0700 >@@ -257,7 +257,8 @@ > > msg->msnslp_message = TRUE; > >- memcpy(header, tmp, 48); >+ memset(header, 0, sizeof(header)); >+ memcpy(header, tmp, sizeof(header)-1); > > tmp += 48; >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=22258">View the attachment on a separate page</a>.</b>
Actions:
View
|
Diff
Attachments on
bug 56630
:
21723
|
22258
|
22553
|
22593
|
22613
|
22614