blob: 6823f1fdd89fb86510ec0d79fa011a4b1f08bd30 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
$NetBSD: patch-bc,v 1.1.2.2 2008/09/02 14:13:33 rtr Exp $
Patch for CVE-2008-2315 taken from Gentoo.
--- Objects/bufferobject.c.orig 2008-02-14 11:26:18.000000000 +0000
+++ Objects/bufferobject.c 2008-08-30 10:16:13.000000000 +0100
@@ -427,6 +427,10 @@
count = 0;
if (!get_buf(self, &ptr, &size, ANY_BUFFER))
return NULL;
+ if (count > PY_SSIZE_T_MAX / size) {
+ PyErr_SetString(PyExc_MemoryError, "result too large");
+ return NULL;
+ }
ob = PyString_FromStringAndSize(NULL, size * count);
if ( ob == NULL )
return NULL;
|
