Hillwood Yang
2b76760b27
- Add patch: CVE-2024-34020-putSDN_OOB_write.patch * Fixes OOB write in putSDN() (bsc#1223534) OBS-URL: https://build.opensuse.org/request/show/1170916 OBS-URL: https://build.opensuse.org/package/show/M17N/hcode?expand=0&rev=9
14 lines
441 B
Diff
14 lines
441 B
Diff
Index: hcode2.1-mailpatch3/mail.c
|
|
===================================================================
|
|
--- hcode2.1-mailpatch3.orig/mail.c
|
|
+++ hcode2.1-mailpatch3/mail.c
|
|
@@ -240,7 +240,7 @@ int outCode;
|
|
unsigned char ibuf[HDR_BUF_LEN],obuf[HDR_BUF_LEN],tbuf[HDR_BUF_LEN];
|
|
unsigned char *iptr, *tptr;
|
|
|
|
- if ( cp >= HDR_BUF_LEN ) {
|
|
+ if ( cp >= (HDR_BUF_LEN-8) ) {
|
|
pr2m(Printwc,fpout,outCode);
|
|
return;
|
|
}
|