Projects
Eulaceura:Mainline:GA
unbound
_service:obs_scm:backport-001-CVE-2024-43168.patch
Sign Up
Log In
Username
Password
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _service:obs_scm:backport-001-CVE-2024-43168.patch of Package unbound
From 193401e7543a1e561dd634a3eaae932fa462a2b9 Mon Sep 17 00:00:00 2001 From: zhailiangliang <zhailiangliang@loongson.cn> Date: Wed, 3 Apr 2024 15:40:58 +0800 Subject: [PATCH] fix heap-buffer-overflow issue in function cfg_mark_ports of file util/config_file.c --- util/config_file.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/util/config_file.c b/util/config_file.c index 26185da0..e7b2f195 100644 --- a/util/config_file.c +++ b/util/config_file.c @@ -1761,6 +1761,10 @@ cfg_mark_ports(const char* str, int allow, int* avail, int num) #endif if(!mid) { int port = atoi(str); + if(port < 0) { + log_err("Prevent out-of-bounds access to array avail"); + return 0; + } if(port == 0 && strcmp(str, "0") != 0) { log_err("cannot parse port number '%s'", str); return 0; -- 2.33.0
Locations
Projects
Search
Status Monitor
Help
Open Build Service
OBS Manuals
API Documentation
OBS Portal
Reporting a Bug
Contact
Mailing List
Forums
Chat (IRC)
Twitter
Open Build Service (OBS)
is an
openSUSE project
.
浙ICP备2022010568号-2