man-db docs/ChangeLog src/ult

man-db-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

man-db docs/ChangeLog src/ult_src.c

From:	Colin Watson
Subject:	man-db docs/ChangeLog src/ult_src.c
Date:	Wed, 30 Jul 2003 15:39:41 -0400

CVSROOT:        /cvsroot/man-db
Module name:    man-db
Branch:         
Changes by:     Colin Watson <address@hidden>   03/07/30 15:39:41

Modified files:
        docs           : ChangeLog 
        src            : ult_src.c 

Log message:
        Fix vulnerabilities 2 and 3 posted by Vade 79
        <address@hidden> on BugTraq, Message-ID:
        <address@hidden>.
        
        * src/ult_src.c (ult_softlink): Return a newly allocated string
        rather than copying into fullpath.
        (test_for_include): Return a newly allocated string rather than
        copying into rel (which was a pointer into part of basename in
        ult_src(), and wasn't reallocated in the event that the .so text
        was too large).
        (ult_src): Allocate basename dynamically rather than using a
        static buffer. relative is no longer needed. Update for changes in
        ult_softlink() and test_for_include().

CVSWeb URLs:
http://savannah.gnu.org/cgi-bin/viewcvs/man-db/man-db/docs/ChangeLog.diff?tr1=1.341&tr2=1.342&r1=text&r2=text
http://savannah.gnu.org/cgi-bin/viewcvs/man-db/man-db/src/ult_src.c.diff?tr1=1.13&tr2=1.14&r1=text&r2=text

[Prev in Thread]

Current Thread

[Next in Thread]

man-db docs/ChangeLog src/ult_src.c, Colin Watson <=

Prev by Date: man-db/docs ChangeLog
Next by Date: man-db docs/ChangeLog src/manp.c
Previous by thread: man-db/docs ChangeLog
Next by thread: man-db docs/ChangeLog src/manp.c
Index(es):
- Date
- Thread