Patch from upstream for potential buffer overflow reading the certificate

index file (Changeset 6298:c7eff98bb299, see mutt flea #3636).
author: is <is> 2013-03-06 20:17:42 +0000
committer: is <is> 2013-03-06 20:17:42 +0000
commit: 43fb68c926223bfda41fd88b68cdb0b577883783 (patch)
tree: 6e2dcd9b823c4102d5f5719749647a405fb6a00d /mail/mutt-devel/patches
parent: 09e5561150337cac2f1139ab2c25c21acd533d8c (diff)
download: pkgsrc-43fb68c926223bfda41fd88b68cdb0b577883783.tar.gz
1 files changed, 20 insertions, 0 deletions
diff --git a/mail/mutt-devel/patches/patch-smime.c b/mail/mutt-devel/patches/patch-smime.c
new file mode 100644
index 00000000000..88d9f1463ee
--- /dev/null
+++ b/mail/mutt-devel/patches/patch-smime.c
@@ -0,0 +1,20 @@
+$NetBSD: patch-smime.c,v 1.1 2013/03/06 20:17:43 is Exp $
+
+Index: smime.c
+===================================================================
+--- smime.c	(revision 6178)
++++ smime.c	(revision 6298)
+@@ -358,5 +358,5 @@
+   FILE *index;
+   char buf[LONG_STRING];
+-  char fields[5][STRING];
++  char fields[5][STRING+1]; /* +1 due to use of fscanf() below. the max field width does not include the null terminator (see http://dev.mutt.org/trac/ticket/3636) */
+   int numFields, hash_suffix, done, cur; /* The current entry */
+   MUTTMENU* menu;
+@@ -471,5 +471,5 @@
+   char cert_path[_POSIX_PATH_MAX];
+   char buf[LONG_STRING], prompt[STRING];
+-  char fields[5][STRING];
++  char fields[5][STRING+1]; /* +1 due to use of fscanf() below. the max field width does not include the null terminator (see http://dev.mutt.org/trac/ticket/3636) */
+   char key[STRING];  
+   int numFields;
author	is <is>	2013-03-06 20:17:42 +0000
committer	is <is>	2013-03-06 20:17:42 +0000
commit	43fb68c926223bfda41fd88b68cdb0b577883783 (patch)
tree	6e2dcd9b823c4102d5f5719749647a405fb6a00d /mail/mutt-devel/patches
parent	09e5561150337cac2f1139ab2c25c21acd533d8c (diff)
download	pkgsrc-43fb68c926223bfda41fd88b68cdb0b577883783.tar.gz