Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
home:mazdlc
arj
CVE-2015-2782-buffer-overflow.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File CVE-2015-2782-buffer-overflow.patch of Package arj
Description: Fix buffer overflow causing an invalid pointer free(). Author: Guillem Jover <guillem@debian.org> Origin: vendor Bug-Debian: https://bugs.debian.org/774015 Forwarded: no Last-Update: 2015-02-26 --- decode.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) --- a/decode.c +++ b/decode.c @@ -255,7 +255,7 @@ void read_pt_len(int nn, int nbit, int i if(i==i_special) { c=getbits(2); - while(--c>=0) + while(--c>=0&&i<nn) pt_len[i++]=0; } } @@ -314,10 +314,10 @@ void read_c_len() c=getbits(CBIT); c+=20; } - while(--c>=0) + while(--c>=0&&i<NC) c_len[i++]=0; } - else + else if (i<NC) c_len[i++]=(unsigned char)(c-2); } while(i<NC)
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor
