thttpd/thttpd-2.25b-overflow.diff

Index: extras/htpasswd.c
===================================================================
--- extras/htpasswd.c.orig	2018-10-22 10:48:47.811465609 +0200
+++ extras/htpasswd.c	2018-10-22 10:52:45.008744706 +0200
@@ -193,7 +193,8 @@ int main(int argc, char *argv[]) {
             putline(tfp,line);
             continue;
         }
-        strcpy(l,line);
+        strncpy(l,line,MAX_STRING_LEN);
+        l[MAX_STRING_LEN-1]='\0';
         getword(w,l,':');
         if(strcmp(user,w)) {
             putline(tfp,line);
@@ -211,7 +212,8 @@ int main(int argc, char *argv[]) {
     }
     fclose(f);
     fclose(tfp);
-    sprintf(command,"cp %s %s",temp_template,argv[1]);
+    snprintf(command,MAX_STRING_LEN,"cp %s %s",temp_template,argv[1]);
+    command[MAX_STRING_LEN-1]='\0';
     system(command);
     unlink(temp_template);
     exit(0);
Accepting request 247376 from home:vitezslav_cizek:branches:server:http - update to 2.26 (bnc#894285) Ignore ECONNABORTED on accept(). Correctly implemented the config-file option change from "nosymlink" to "nosymlinkcheck", which was supposedly done in version 2.24. Removed mailto: link from default index page. Allow CGIs to provide both Location and Status headers. Better logic for figuring out CGI SERVER_NAME environment variable. Updated for clang, and general cleanup. - dropped thttpd-2.25b-getline.patch (upstream) - added thttpd-crypt_is_in_crypt.h.patch OBS-URL: https://build.opensuse.org/request/show/247376 OBS-URL: https://build.opensuse.org/package/show/server:http/thttpd?expand=0&rev=24 2014-09-09 14:51:18 +00:00			`Index: extras/htpasswd.c`
			`===================================================================`
Accepting request 643659 from home:vitezslav_cizek:branches:server:http - Update to 2.29 (bsc#1112629) Allow CGI to handle HTTP methods besides GET/HEAD/POST. Improvements to the FreeBSD startup script. (Craig Leres) Minor portability tweak in mmc.c. Fix to buffer overrun bug in htpasswd. Reported by Alessio Santoru as CVE-2017-17663. - update thttpd-2.25b-overflow.diff OBS-URL: https://build.opensuse.org/request/show/643659 OBS-URL: https://build.opensuse.org/package/show/server:http/thttpd?expand=0&rev=41 2018-10-23 12:47:01 +00:00			`--- extras/htpasswd.c.orig 2018-10-22 10:48:47.811465609 +0200`
			`+++ extras/htpasswd.c 2018-10-22 10:52:45.008744706 +0200`
			`@@ -193,7 +193,8 @@ int main(int argc, char *argv[]) {`
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/thttpd?expand=0&rev=1 2007-01-15 23:39:05 +00:00			`putline(tfp,line);`
			`continue;`
			`}`
			`- strcpy(l,line);`
			`+ strncpy(l,line,MAX_STRING_LEN);`
			`+ l[MAX_STRING_LEN-1]='\0';`
			`getword(w,l,':');`
			`if(strcmp(user,w)) {`
			`putline(tfp,line);`
Accepting request 643659 from home:vitezslav_cizek:branches:server:http - Update to 2.29 (bsc#1112629) Allow CGI to handle HTTP methods besides GET/HEAD/POST. Improvements to the FreeBSD startup script. (Craig Leres) Minor portability tweak in mmc.c. Fix to buffer overrun bug in htpasswd. Reported by Alessio Santoru as CVE-2017-17663. - update thttpd-2.25b-overflow.diff OBS-URL: https://build.opensuse.org/request/show/643659 OBS-URL: https://build.opensuse.org/package/show/server:http/thttpd?expand=0&rev=41 2018-10-23 12:47:01 +00:00			`@@ -211,7 +212,8 @@ int main(int argc, char *argv[]) {`
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/thttpd?expand=0&rev=1 2007-01-15 23:39:05 +00:00			`}`
			`fclose(f);`
			`fclose(tfp);`
			`- sprintf(command,"cp %s %s",temp_template,argv[1]);`
			`+ snprintf(command,MAX_STRING_LEN,"cp %s %s",temp_template,argv[1]);`
			`+ command[MAX_STRING_LEN-1]='\0';`
			`system(command);`
			`unlink(temp_template);`
			`exit(0);`