commit-inetutils
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[SCM] GNU Inetutils branch, master, updated. v1.9.4.91-2-g91ad038


From: Alfred M. Szmidt
Subject: [SCM] GNU Inetutils branch, master, updated. v1.9.4.91-2-g91ad038
Date: Mon, 1 Feb 2021 05:32:01 -0500 (EST)

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU Inetutils ".

The branch, master has been updated
       via  91ad03852a1cbc9b6f5877d84c35b6065ac25132 (commit)
      from  c35057c837e10b4c4c5a9fc7666bb7d058c03181 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
http://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=91ad03852a1cbc9b6f5877d84c35b6065ac25132


commit 91ad03852a1cbc9b6f5877d84c35b6065ac25132
Author: Alfred M. Szmidt <ams@gnu.org>
Date:   Mon Feb 1 11:28:47 2021 +0100

    Fix possible buffer overflow in ftp.
    
    * ftp/ftp.c (getreply): Fix possible buffer overflow (backport
    from OpenBSD); reported by O. Bittner, D. Maier, M. Munier,
    J. Beier of SecT, TU Berlin.

diff --git a/ChangeLog b/ChangeLog
index 83216e0..712944e 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,9 @@
+2021-02-01  Alfred M. Szmidt  <ams@gnu.org>
+
+       * ftp/ftp.c (getreply): Fix possible buffer overflow (backport
+       from OpenBSD); reported by O. Bittner, D. Maier, M. Munier,
+       J. Beier of SecT, TU Berlin.
+
 2021-01-29  Simon Josefsson  <simon@josefsson.org>
 
        ping6: Don't allow unprivileged users to flood ping.
diff --git a/ftp/ftp.c b/ftp/ftp.c
index 96fb6a5..d21dbdd 100644
--- a/ftp/ftp.c
+++ b/ftp/ftp.c
@@ -540,7 +540,10 @@ getreply (int expecteof)
          if (pflag == 2)
            {
              if (c != '\r' && c != ')')
-               *pt++ = c;
+               {
+                 if (pt < &pasv[sizeof(pasv) - 1])
+                   *pt++ = c;
+               }
              else
                {
                  *pt = '\0';

-----------------------------------------------------------------------

Summary of changes:
 ChangeLog | 6 ++++++
 ftp/ftp.c | 5 ++++-
 2 files changed, 10 insertions(+), 1 deletion(-)


hooks/post-receive
-- 
GNU Inetutils 



reply via email to

[Prev in Thread] Current Thread [Next in Thread]