projects / oweals / busybox.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2c98c40) | patch
Fix for an integer overflow bug that could cause a segfault on certain
authorRob Landley <rob@landley.net>
Fri, 17 Feb 2006 05:19:40 +0000 (05:19 -0000)
committerRob Landley <rob@landley.net>
Fri, 17 Feb 2006 05:19:40 +0000 (05:19 -0000)
commitefae294b15ff6d0834778c523e16f1751b790d99
tree73eb0d05822d7fdb6b5986f9477ade764979053etree | snapshot
parent2c98c40ec881dcaac93b069525314bc078359175commit | diff
Fix for an integer overflow bug that could cause a segfault on certain
pathological archives.

(Unlikely to have security implications, the only way to trigger it basically
wound up doing memset(dbuf,x,2^31) and triggering an immediate segfault.  The
test basically gives us a more polite error message.)

Thanks to Ned Ludd and the Gentoo security guys for finding this.
archival/libunarchive/decompress_bunzip2.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.