diff options
Diffstat (limited to 'net/nagios-base/patches/patch-contrib_daemonchk.c')
-rw-r--r-- | net/nagios-base/patches/patch-contrib_daemonchk.c | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/net/nagios-base/patches/patch-contrib_daemonchk.c b/net/nagios-base/patches/patch-contrib_daemonchk.c new file mode 100644 index 00000000000..d446c890df4 --- /dev/null +++ b/net/nagios-base/patches/patch-contrib_daemonchk.c @@ -0,0 +1,14 @@ +$NetBSD: patch-contrib_daemonchk.c,v 1.1 2014/04/02 10:22:37 he Exp $ + +Fix off-by-one vulnerabilities, ref. http://secunia.com/advisories/55976/ + +--- contrib/daemonchk.c.orig 2011-08-17 07:36:27.000000000 +0000 ++++ contrib/daemonchk.c +@@ -174,7 +174,6 @@ static int process_cgivars(void) { + + /* do some basic length checking on the variable identifier to prevent buffer overflows */ + if(strlen(variables[x]) >= MAX_INPUT_BUFFER - 1) { +- x++; + continue; + } + } |