summarylogtreecommitdiffstats
path: root/CVE-2006-0048.patch
diff options
context:
space:
mode:
Diffstat (limited to 'CVE-2006-0048.patch')
-rw-r--r--CVE-2006-0048.patch18
1 files changed, 18 insertions, 0 deletions
diff --git a/CVE-2006-0048.patch b/CVE-2006-0048.patch
new file mode 100644
index 000000000000..4155a86805dc
--- /dev/null
+++ b/CVE-2006-0048.patch
@@ -0,0 +1,18 @@
+Description: Fix for CVE-2006-0048
+Author: Cédric Delfosse <cedric@debian.org>
+Origin: vendor
+Bug-Debian: http://bugs.debian.org/360571
+Last-Update: 2006-04-14
+
+--- a/src/write.c
++++ b/src/write.c
+@@ -244,6 +244,9 @@ out_flavour( enum FLAVOUR flavour,
+ if( flags.separator && ( out == stdout ) ) /* FIXME: sucks? */
+ color( c_SEPARATOR, stdout, SEPARATOR "\n" );
+
++ /* Temporary fix for CVE-2006-0048 */
++ if (buflen < 0) buflen = 0;
++
+ switch ( flavour ) {
+ case HEX_ASCII_DUMP:
+ out_xa( out, buf, buflen );