Annotation of /trunk/cups/patches/cups-1.3.6-CVE-2008-0047.patch
Parent Directory | Revision Log
Revision 510 -
(hide annotations)
(download)
Thu Mar 20 10:16:46 2008 UTC (16 years, 6 months ago) by niro
File size: 495 byte(s)
Thu Mar 20 10:16:46 2008 UTC (16 years, 6 months ago) by niro
File size: 495 byte(s)
-security fix for CVE-2008-0047
1 | niro | 510 | Index: cups-1.2.12/cgi-bin/search.c |
2 | =================================================================== | ||
3 | --- cups-1.2.12.orig/cgi-bin/search.c | ||
4 | +++ cups-1.2.12/cgi-bin/search.c | ||
5 | @@ -171,7 +171,9 @@ cgiCompileSearch(const char *query) /* I | ||
6 | * string + RE overhead... | ||
7 | */ | ||
8 | |||
9 | - wlen = (sptr - s) + 4 * wlen + 2 * strlen(prefix) + 4; | ||
10 | + wlen = (sptr - s) + 2 * 4 * wlen + 2 * strlen(prefix) + 11; | ||
11 | + if (lword) | ||
12 | + wlen += strlen(lword); | ||
13 | |||
14 | if (wlen > slen) | ||
15 | { |