Buffer handling bugs in glimmer

Kris Kennaway kris at obsecurity.org
Thu Jun 26 21:22:26 PDT 2003 

The patches are attached.  Can someone please test this?

Kris

----- Forwarded message from Anil Madhavapeddy <avsm at cvs.openbsd.org> -----

X-Original-To: kkenn at localhost
Delivered-To: kkenn at localhost.obsecurity.org
X-Originating-IP: [128.125.38.123]
Delivered-To: kris at freebsd.org
Date: Tue, 17 Jun 2003 08:06:42 -0600 (MDT)
From: Anil Madhavapeddy <avsm at cvs.openbsd.org>
To: ports-changes at cvs.openbsd.org
Subject: CVS: cvs.openbsd.org: ports
X-Spam-Level: 
X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp)
X-Loop: ports-changes at openbsd.org
Precedence: list
Reply-To: Anil Madhavapeddy <avsm at cvs.openbsd.org>
X-Bogosity: No, tests=bogofilter, spamicity=0.000000, version=0.13.6

CVSROOT:	/cvs
Module name:	ports
Changes by:	avsm at cvs.openbsd.org	2003/06/17 08:06:42

Modified files:
	editors/glimmer: Makefile 
Added files:
	editors/glimmer/patches: patch-src_file-io_c patch-src_main_c 

Log message:
patch a couple of too-small buffers that could lead to path truncation
maintainer ok, submitted upstream

----- End forwarded message -----
-------------- next part --------------
$OpenBSD: patch-src_file-io_c,v 1.1 2003/06/17 14:06:42 avsm Exp $
--- src/file-io.c.orig	Tue Jun 17 01:52:36 2003
+++ src/file-io.c	Tue Jun 17 01:53:49 2003
@@ -102,10 +102,10 @@ void
 new_file_real (char *filename)
 {
     GnomeVFSURI *uri;
-    gchar cwd[256];
+    gchar cwd[MAXPATHLEN];
     gchar *full;
 
-    getcwd (cwd, 256);
+    getcwd (cwd, sizeof(cwd));
     full = g_strconcat (cwd, "/", filename, NULL);
     uri = gnome_vfs_uri_new (full);
     g_free (full);
-------------- next part --------------
$OpenBSD: patch-src_main_c,v 1.1 2003/06/17 14:06:42 avsm Exp $
--- src/main.c.orig	Tue Jun 17 01:53:17 2003
+++ src/main.c	Tue Jun 17 01:54:18 2003
@@ -342,7 +342,7 @@ main_finish (void *closure, int argc, ch
     gchar *path;
     gchar *file;
     gchar *full;
-    gchar cwd[256];
+    gchar cwd[MAXPATHLEN];
 
     args = (gchar **) poptGetArgs (pctx);
 
@@ -381,7 +381,7 @@ main_finish (void *closure, int argc, ch
         }
     }
     if (input_file) {
-        gchar *path, *file, *full, cwd[256];
+        gchar *path, *file, *full, cwd[MAXPATHLEN];
 
         getcwd (cwd, sizeof (cwd));
         path = get_path_from_filename (input_file);
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-gnome/attachments/20030626/0b65d526/attachment.bin

More information about the freebsd-gnome mailing list