diff options
author | stas <stas@FreeBSD.org> | 2009-05-29 16:24:23 +0000 |
---|---|---|
committer | stas <stas@FreeBSD.org> | 2009-05-29 16:24:23 +0000 |
commit | b6666822bf294f95488fd0cea33197358ed95ef5 (patch) | |
tree | 7ab281e7c2db563af0b40775b014bdc1a5c06c4f /gnu/lib/libiberty | |
parent | 7411c6484bcdda96f6318f8e6fe42becb1181734 (diff) | |
download | FreeBSD-src-b6666822bf294f95488fd0cea33197358ed95ef5.zip FreeBSD-src-b6666822bf294f95488fd0cea33197358ed95ef5.tar.gz |
- Prevent buffer overflow in IPFilter's load_http function used to load
ipfilter tables via http by the user-level ippool utility. Previously
the 1024-byte buffer used to store a http request coudld easily overflow
if the length of the hostname part of the url passes exceeded 496 bytes. [1]
- Use snprintf to prevent possieble buffer overflows in future. [2]
- Do not try to close the descriptor twice on failure. [2]
Reported by: Maksymilian Arciemowicz <cxib@securityreason.com> [1]
Obtained from: NetBSD CVS [2]
MFC after: 2 weeks
Diffstat (limited to 'gnu/lib/libiberty')
0 files changed, 0 insertions, 0 deletions