search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
db-move: moved gcr from [testing] to [extra] (x86_64)
[arch-packages.git] / libcdaudio / repos / extra-x86_64 / 02-cddb-bufferoverflow.patch
blobb5422735c3b525e9f4e7e123430bad9c090fd60c
1 Author: Moritz Muehlenhoff <jmm@inutil.org>
2 Description: CVE-2008-5030
3
4 diff -Naurp libcdaudio.orig/src/cddb.c libcdaudio/src/cddb.c
5 --- libcdaudio.orig/src/cddb.c 2008-09-07 23:53:16.000000000 +0000
6 +++ libcdaudio/src/cddb.c 2008-11-12 21:32:21.000000000 +0000
7 @@ -1679,7 +1679,7 @@ cddb_read_disc_data(int cd_desc, struct
8 free(file);
9
10 while(!feof(cddb_data)) {
11 - fgets(inbuffer, 512, cddb_data);
12 + fgets(inbuffer, 256, cddb_data);
13 cddb_process_line(inbuffer, data);
14 }
15
archlinux package build