summaryrefslogtreecommitdiff
path: root/games/nethack-qt
diff options
context:
space:
mode:
authorpooka <pooka>2003-02-19 20:25:20 +0000
committerpooka <pooka>2003-02-19 20:25:20 +0000
commita4fb528152703afc8f5e61e2e806c8cf1fd9b3f3 (patch)
treeb6b9b9a4dcf6e15450a4fa4794a34a310ad98c9c /games/nethack-qt
parentc840ac4fa427147aae72ff1b8957fe72cada17dd (diff)
downloadpkgsrc-a4fb528152703afc8f5e61e2e806c8cf1fd9b3f3.tar.gz
fix buffer overrun (games group vulnerability) when running nethack -s
patch from nethack.org
Diffstat (limited to 'games/nethack-qt')
-rw-r--r--games/nethack-qt/distinfo3
-rw-r--r--games/nethack-qt/patches/patch-aj20
2 files changed, 22 insertions, 1 deletions
diff --git a/games/nethack-qt/distinfo b/games/nethack-qt/distinfo
index b1a4a3d35c2..c2b03d28ba0 100644
--- a/games/nethack-qt/distinfo
+++ b/games/nethack-qt/distinfo
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.8 2002/09/20 21:24:48 jlam Exp $
+$NetBSD: distinfo,v 1.9 2003/02/19 20:25:21 pooka Exp $
SHA1 (nethack-340.tgz) = db480f5bf94372a8f87ee4d081f83efd99b31523
Size (nethack-340.tgz) = 3270905 bytes
@@ -10,3 +10,4 @@ SHA1 (patch-af) = 20c37fd62b05121d834d3c42cf3aa48b018b362d
SHA1 (patch-ag) = 6aeae6bde079b9c9081f6e32523687010c9bc674
SHA1 (patch-ah) = f9d4a9d7e4e536a1c221a4b12b0d204f63410543
SHA1 (patch-ai) = 580a75c7ebc55b099a702ad21ce12d960f2805ff
+SHA1 (patch-aj) = 12763f8759de2c9b13d0e77f18e8e6aa69a031dc
diff --git a/games/nethack-qt/patches/patch-aj b/games/nethack-qt/patches/patch-aj
new file mode 100644
index 00000000000..cc9584f7f5c
--- /dev/null
+++ b/games/nethack-qt/patches/patch-aj
@@ -0,0 +1,20 @@
+$NetBSD: patch-aj,v 1.1 2003/02/19 20:25:21 pooka Exp $
+
+*** src/topten.c.orig Mon Feb 4 08:06:07 2002
+--- src/topten.c Mon Feb 10 10:48:55 2003
+***************
+*** 856,861 ****
+--- 856,867 ----
+ else {
+ if (playerct > 1) Strcat(pbuf, "any of ");
+ for (i = 0; i < playerct; i++) {
++ /* stop printing players if there are too many to fit */
++ if (strlen(pbuf) + strlen(players[i]) + 2 >= BUFSZ) {
++ if (strlen(pbuf) < BUFSZ-4) Strcat(pbuf, "...");
++ else Strcpy(pbuf+strlen(pbuf)-4, "...");
++ break;
++ }
+ Strcat(pbuf, players[i]);
+ if (i < playerct-1) {
+ if (players[i][0] == '-' &&
+