FreeBSD Bugzilla – Attachment 87988 Details for
Bug 124718
[PATCH] mail/fetchmail: fix CVE-2008-2711 (crash when logging long headers in -v -v mode)
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
fetchmail-6.3.8_6.patch
fetchmail-6.3.8_6.patch (text/plain), 1.73 KB, created by
Matthias Andree
on 2008-06-18 15:30:00 UTC
(
hide
)
Description:
fetchmail-6.3.8_6.patch
Filename:
MIME Type:
Creator:
Matthias Andree
Created:
2008-06-18 15:30:00 UTC
Size:
1.73 KB
patch
obsolete
>diff -ruN --exclude=CVS /usr/ports/mail/fetchmail/Makefile /usr/home/emma/ports/mail/fetchmail/Makefile >--- /usr/ports/mail/fetchmail/Makefile 2008-06-06 15:42:50.000000000 +0200 >+++ /usr/home/emma/ports/mail/fetchmail/Makefile 2008-06-18 16:16:56.000000000 +0200 >@@ -11,7 +11,7 @@ > > PORTNAME= fetchmail > PORTVERSION= 6.3.8 >-PORTREVISION= 5 >+PORTREVISION= 6 > CATEGORIES= mail ipv6 > MASTER_SITES= ${MASTER_SITE_BERLIOS} \ > ${MASTER_SITE_SUNSITE:S/$/:sunsite/}\ >diff -ruN --exclude=CVS /usr/ports/mail/fetchmail/files/patch-CVE-2008-2711 /usr/home/emma/ports/mail/fetchmail/files/patch-CVE-2008-2711 >--- /usr/ports/mail/fetchmail/files/patch-CVE-2008-2711 1970-01-01 01:00:00.000000000 +0100 >+++ /usr/home/emma/ports/mail/fetchmail/files/patch-CVE-2008-2711 2008-06-18 16:18:27.000000000 +0200 >@@ -0,0 +1,31 @@ >+diff --git a/report.c b/report.c >+index 31d4e48..2a731ac 100644 >+--- ./report.c~ >++++ ./report.c >+@@ -238,11 +238,17 @@ report_build (FILE *errfp, message, va_alist) >+ rep_ensuresize(); >+ >+ #if defined(VA_START) >+- VA_START (args, message); >+ for ( ; ; ) >+ { >++ /* >++ * args has to be initialized before every call of vsnprintf(), >++ * because vsnprintf() invokes va_arg macro and thus args is >++ * undefined after the call. >++ */ >++ VA_START(args, message); >+ n = vsnprintf (partial_message + partial_message_size_used, partial_message_size - partial_message_size_used, >+ message, args); >++ va_end (args); >+ >+ if (n >= 0 >+ && (unsigned)n < partial_message_size - partial_message_size_used) >+@@ -254,7 +260,6 @@ report_build (FILE *errfp, message, va_alist) >+ partial_message_size += 2048; >+ partial_message = REALLOC (partial_message, partial_message_size); >+ } >+- va_end (args); >+ #else >+ for ( ; ; ) >+ {
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=87988">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 124718
: 87988