grep: add patch to fix CVE-2015-1345
Fixes CVE-2015-1345 - heap buffer overrun. See https://bugzilla.redhat.com/show_bug.cgi?id=1183651 Patch upstream. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
This commit is contained in:
parent
ddfce0448d
commit
3ae2f86cf2
20
package/grep/0001-fix-CVE-2015-1345.patch
Normal file
20
package/grep/0001-fix-CVE-2015-1345.patch
Normal file
|
@ -0,0 +1,20 @@
|
||||||
|
Simplified patch from upstream to avoid autoreconf. Source:
|
||||||
|
http://git.savannah.gnu.org/cgit/grep.git/commit/?id=83a95bd8c8561875b948cadd417c653dbe7ef2e2
|
||||||
|
|
||||||
|
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
|
||||||
|
---
|
||||||
|
diff --git a/src/kwset.c b/src/kwset.c
|
||||||
|
index 4003c8d..376f7c3 100644
|
||||||
|
--- a/src/kwset.c
|
||||||
|
+++ b/src/kwset.c
|
||||||
|
@@ -643,6 +643,8 @@ bmexec_trans (kwset_t kwset, char const *text, size_t size)
|
||||||
|
if (! tp)
|
||||||
|
return -1;
|
||||||
|
tp++;
|
||||||
|
+ if (ep <= tp)
|
||||||
|
+ break;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
--
|
||||||
|
cgit v0.9.0.2
|
Loading…
Reference in a new issue