Sophie

Sophie

distrib > Mageia > 1 > i586 > media > core-updates-src > by-pkgid > 2d27fe3dff73e21c1aac97aebe0dff40 > files > 28

rpm-4.8.1-10.5.mga1.src.rpm

commit f2936e2e79de2f80de11946e1331f2c91c0b907e
Author: DMorgan <Dmorgan>
Date:   Sat Oct 1 10:40:55 2011 +0200

    - Fixes the  first case crash of RhBug:741606 / CVE-2011-3378 where
      immutable region offset is way out of bounds.

diff --git a/lib/header.c b/lib/header.c
index ba4ad21..ab0d32e 100644
--- a/lib/header.c
+++ b/lib/header.c
@@ -827,7 +827,7 @@ Header headerLoad(void * uh)
 
 	{   int off = ntohl(pe->offset);
 
-	    if (hdrchkData(off))
+	    if (hdrchkData(off) || hdrchkRange(dl, off))
 		goto errxit;
 	    if (off) {
 		size_t nb = REGION_TAG_COUNT;

Perl :: Catalyst :: PostgreSQL :: RPM Valid HTML 4.01 Transitional