Attachment 32917 Details for Bug 75242

[patch] patch.CAN-2005-0763.mc

patch.CAN-2005-0763.mc (text/plain), 1.37 KB, created by Ludwig Nussel on 2005-03-30 10:45:05 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: Ludwig Nussel

Created: 2005-03-30 10:45:05 UTC

Size: 1.37 KB

patch

obsolete

>diff -u mc-4.5.55/debian/changelog mc-4.5.55/debian/changelog
>--- mc-4.5.55/debian/changelog
>+++ mc-4.5.55/debian/changelog
>@@ -1,3 +1,14 @@
>+mc (4.5.55-1.2woody6) stable-security; urgency=high
>+
>+  * Non-maintainer upload by the Security Team
>+  * Applied patch by Andrew V. Samoilov to fix another buffer overflow
>+    [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff]
>+
>+ -- Martin Schulze <joey@infodrom.org>  Fri, 18 Mar 2005 09:34:08 +0100
>+
> mc (4.5.55-1.2woody5) stable-security; urgency=high
> 
>   * Non-maintainer upload by the Security Team
>only in patch2:
>unchanged:
>--- mc-4.5.55.orig/debian/patches/52_security_CAN-2005-0763.diff
>+++ mc-4.5.55/debian/patches/52_security_CAN-2005-0763.diff
>@@ -0,0 +1,14 @@
>+diff -u -p -Nr --exclude CVS mc-4.5.55.orig/src/complete.c mc-4.5.55/src/complete.c
>+--- mc-4.5.55.orig/src/complete.c	2005-03-17 16:13:29.000000000 +0100
>++++ mc-4.5.55/src/complete.c	2005-03-17 16:22:40.000000000 +0100
>+@@ -827,8 +827,8 @@ static int insert_text (WInput *in, char
>+     }
>+     if (strlen (in->buffer)+1 < in->current_max_len){
>+     	if (len > 0){
>+-	    int i, l = strlen (&in->buffer [end]);
>+-	    for (i = l + 1; i >= 0; i--)
>++	    int i = strlen (&in->buffer [end]);
>++	    for (; i >= 0; i--)
>+ 	        in->buffer [end + len + i] = in->buffer [end + i];
>+ 	} else if (len < 0){
>+ 	    char *p = in->buffer + end + len, *q = in->buffer + end;

Actions: View | Diff

Attachments on bug 75242: 32917