[usbmuxd] add patch to git
Peter Robinson
pbrobinson at fedoraproject.org
Thu Feb 2 12:53:34 UTC 2012
commit 55b6f365b16e4d1071b82b249b685262031d1742
Author: Peter Robinson <pbrobinson at gmail.com>
Date: Thu Feb 2 12:53:25 2012 +0000
add patch to git
90-cve-2012-0065.patch | 21 +++++++++++++++++++++
1 files changed, 21 insertions(+), 0 deletions(-)
---
diff --git a/90-cve-2012-0065.patch b/90-cve-2012-0065.patch
new file mode 100644
index 0000000..eed63f3
--- /dev/null
+++ b/90-cve-2012-0065.patch
@@ -0,0 +1,21 @@
+From 8968476bb5262d8aef20cb199337b174d338beb8 Mon Sep 17 00:00:00 2001
+From: Nikias Bassen
+Date: Thu, 12 Jan 2012 16:58:26 +0000
+Subject: Fix possible buffer overflow (thanks Rigan)
+
+---
+diff --git a/libusbmuxd/libusbmuxd.c b/libusbmuxd/libusbmuxd.c
+index e06ee61..98e92df 100644
+--- a/libusbmuxd/libusbmuxd.c
++++ b/libusbmuxd/libusbmuxd.c
+@@ -189,7 +189,7 @@ static int receive_packet(int sfd, struct usbmuxd_header *header, void **payload
+ char *strval = NULL;
+ plist_get_string_val(n, &strval);
+ if (strval) {
+- strcpy(dev->serial_number, strval);
++ strncpy(dev->serial_number, strval, 255);
+ free(strval);
+ }
+ n = plist_dict_get_item(props, "LocationID");
+--
+cgit v0.8.3.1-34-gbf3d
More information about the scm-commits
mailing list