1 |
drac 07/11/06 21:14:01 |
2 |
|
3 |
Added: 101_fix-buffer-overflow.diff digest-orpheus-1.6-r1 |
4 |
Log: |
5 |
Fix security bug 113683, CVE-2005-3863, a stack-based buffer overflow in kkstrtext.h in ktools library and stabilize amd64. |
6 |
(Portage version: 2.1.3.18, RepoMan options: --force) |
7 |
|
8 |
Revision Changes Path |
9 |
1.1 media-sound/orpheus/files/101_fix-buffer-overflow.diff |
10 |
|
11 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/media-sound/orpheus/files/101_fix-buffer-overflow.diff?rev=1.1&view=markup |
12 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/media-sound/orpheus/files/101_fix-buffer-overflow.diff?rev=1.1&content-type=text/plain |
13 |
|
14 |
Index: 101_fix-buffer-overflow.diff |
15 |
=================================================================== |
16 |
Fix a stack-based buffer overflow in kkstrtext.h in ktools library. |
17 |
(CVE-2005-3863) (Closes: #368402) |
18 |
Index: orpheus-1.5/kkstrtext-0.1/kkstrtext.h |
19 |
=================================================================== |
20 |
--- orpheus-1.5.orig/kkstrtext-0.1/kkstrtext.h 2003-12-14 11:51:38.000000000 +0100 |
21 |
+++ orpheus-1.5/kkstrtext-0.1/kkstrtext.h 2006-08-01 21:57:14.000000000 +0200 |
22 |
@@ -87,7 +87,7 @@ |
23 |
{ \ |
24 |
va_list vgs__ap; char vgs__buf[1024]; \ |
25 |
va_start(vgs__ap, fmt); \ |
26 |
- vsprintf(vgs__buf, fmt, vgs__ap); c = vgs__buf; \ |
27 |
+ vsnprintf(vgs__buf, 1024, fmt, vgs__ap); c = vgs__buf; \ |
28 |
va_end(vgs__ap); \ |
29 |
} |
30 |
|
31 |
|
32 |
|
33 |
|
34 |
1.1 media-sound/orpheus/files/digest-orpheus-1.6-r1 |
35 |
|
36 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/media-sound/orpheus/files/digest-orpheus-1.6-r1?rev=1.1&view=markup |
37 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/media-sound/orpheus/files/digest-orpheus-1.6-r1?rev=1.1&content-type=text/plain |
38 |
|
39 |
Index: digest-orpheus-1.6-r1 |
40 |
=================================================================== |
41 |
MD5 718b57d507d4dfae5008e7fb53f7b840 orpheus-1.6.tar.gz 440553 |
42 |
RMD160 bd1b04f8c1195074e648d1ed8731970f512e120a orpheus-1.6.tar.gz 440553 |
43 |
SHA256 18a6a4b0171c8a2a5a09be6e2cd8fc781c145fde1b266e43a9902fef10ee6ff5 orpheus-1.6.tar.gz 440553 |
44 |
|
45 |
|
46 |
|
47 |
-- |
48 |
gentoo-commits@g.o mailing list |