pool/minisign
SHA256
16
0
Fork 1
Code Issues Pull Requests 1 Activity
Files
factory
minisign/minisign-dup-command-line-args.patch
Jonathan Brielmaier 11aa379e35 - Bugfix: 
* bugfix: duplicate command-line arguments [7dfdb3c]
  * Add minisign-dup-command-line-args.patch

- Security fix: [gpg.fail/trustcomment]
  * Trusted comment injection (minisign) [6c59875]
  * trim(): only trim trailing \r\n, reject straight \r characters
  * Add minisign-gpg.fail-trustcomment.patch

- Security fix: [gpg.fail/minisign]
  * Trusted comment injection (minisign) [a10dc92]
  * Bail out if the signature file contains unprintable characters
  * Add minisign-gpg.fail-minisign.patch

OBS-URL: https://build.opensuse.org/package/show/security/minisign?expand=0&rev=8
2026-01-12 11:19:12 +00:00

24 lines
848 B
Diff
Raw Permalink Blame History

From 7dfdb3c7bd4cc10e7e3bd52aec38a2052407fbc2 Mon Sep 17 00:00:00 2001
From: Frank Denis <github@pureftpd.org>
Date: Mon, 29 Dec 2025 23:06:30 +0100
Subject: [PATCH] bugfix: duplicate command-line arguments
Spotted by @two-heart, thanks!
---
src/minisign.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/minisign.c b/src/minisign.c
index 8f82304..df2160c 100644
--- a/src/minisign.c
+++ b/src/minisign.c
@@ -1002,7 +1002,7 @@ main(int argc, char **argv)
case '?':
usage();
}
- if (opt_flag > 0 && opt_flag <= (int) sizeof opt_seen / 8) {
+ if (opt_flag > 0 && opt_flag < (int) sizeof opt_seen * 8) {
if ((opt_seen[opt_flag / 8] & (1U << (opt_flag & 7))) != 0) {
fprintf(stderr, "Duplicate option: -- %c\n\n", opt_flag);
usage();
Reference in New Issue View Git Blame Copy Permalink