fix buffer overrun (games group vulnerability) when running nethack -s

patch from nethack.org
author: pooka <pooka@pkgsrc.org> 2003-02-19 20:25:20 +0000
committer: pooka <pooka@pkgsrc.org> 2003-02-19 20:25:20 +0000
commit: 51d88681fdb3e104197f0bc186f62bd0599f003e (patch)
tree: b6b9b9a4dcf6e15450a4fa4794a34a310ad98c9c /games/nethack-lib/patches
parent: 1ac6e98c01957277ac33e302399518397d21f510 (diff)
download: pkgsrc-51d88681fdb3e104197f0bc186f62bd0599f003e.tar.gz
1 files changed, 20 insertions, 0 deletions
diff --git a/games/nethack-lib/patches/patch-ah b/games/nethack-lib/patches/patch-ah
new file mode 100644
index 00000000000..529a53b51de
--- /dev/null
+++ b/games/nethack-lib/patches/patch-ah
@@ -0,0 +1,20 @@
+$NetBSD: patch-ah,v 1.1 2003/02/19 20:25:20 pooka Exp $
+
+*** src/topten.c.orig	Mon Feb  4 08:06:07 2002
+--- src/topten.c	Mon Feb 10 10:48:55 2003
+***************
+*** 856,861 ****
+--- 856,867 ----
+  	    else {
+  		if (playerct > 1) Strcat(pbuf, "any of ");
+  		for (i = 0; i < playerct; i++) {
++ 		    /* stop printing players if there are too many to fit */
++ 		    if (strlen(pbuf) + strlen(players[i]) + 2 >= BUFSZ) {
++ 			if (strlen(pbuf) < BUFSZ-4) Strcat(pbuf, "...");
++ 			else Strcpy(pbuf+strlen(pbuf)-4, "...");
++ 			break;
++ 		    }
+  		    Strcat(pbuf, players[i]);
+  		    if (i < playerct-1) {
+  			if (players[i][0] == '-' &&
+
author	pooka <pooka@pkgsrc.org>	2003-02-19 20:25:20 +0000
committer	pooka <pooka@pkgsrc.org>	2003-02-19 20:25:20 +0000
commit	51d88681fdb3e104197f0bc186f62bd0599f003e (patch)
tree	b6b9b9a4dcf6e15450a4fa4794a34a310ad98c9c /games/nethack-lib/patches
parent	1ac6e98c01957277ac33e302399518397d21f510 (diff)
download	pkgsrc-51d88681fdb3e104197f0bc186f62bd0599f003e.tar.gz