mirror/freebsd
1
0
Fork 0
mirror of https://git.FreeBSD.org/src.git synced 2025-01-28 16:43:09 +00:00
Code Issues Releases Activity

Fix bspatch heap overflow vulnerability.

Browse Source 
Obtained from:	Chromium
Reported by:	Lu Tung-Pin
Security:	FreeBSD-SA-16:25.bspatch
This commit is contained in:
Xin LI 2016-07-25 14:45:48 +00:00
parent ae1b731b5d
commit 2c8d04d022
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=303298
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
usr.bin/bsdiff/bspatch/bspatch.c
View File

@ -163,6 +163,10 @@ int main(int argc,char * argv[])
ctrl[i]=offtin(buf);
}
/* Sanity-check */
if ((ctrl[0] < 0) || (ctrl[1] < 0))
errx(1,"Corrupt patch\n");
/* Sanity-check */
if(newpos+ctrl[0]>newsize)
errx(1,"Corrupt patch\n");