pacman - Main repository is at http://projects.archlinux.org/pacman.git/

diff options

author	László Várady <laszlo.varady93@gmail.com>	2019-08-05 15:11:19 +0200
committer	Allan McRae <allan@archlinux.org>	2019-08-12 02:19:09 +0200
commit	f9f22fded2f05ae1edb5af3bd0e3a4aba2f5ce34 (patch)
tree	304b45707585d6ad8a222f11dc8cc028631b78ca /scripts/pacman-db-upgrade.sh.in
parent	18a64400617259b34ccf014682fd8022d551a036 (diff)
download	pacman-f9f22fded2f05ae1edb5af3bd0e3a4aba2f5ce34.tar.gz pacman-f9f22fded2f05ae1edb5af3bd0e3a4aba2f5ce34.tar.xz

pacman/callback: fix buffer over-read

Commit 11ab9aa9f5f0f3873df89c73e8715b82f485bd9b replaced a strcpy() call with memcpy(), without copying the terminating null character. Since fname is allocated with malloc(), subsequent strstr() calls will overrun the buffer's boundary. Signed-off-by: László Várady <laszlo.varady93@gmail.com> Signed-off-by: Allan McRae <allan@archlinux.org>

Diffstat (limited to 'scripts/pacman-db-upgrade.sh.in')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: