Fix a bug whereby 'mformat' could end up passing uninitialized bytes to write(2). This could be reproduced with: mformat -C -f 1440 -L 16 -N 77777777 -i /tmp/x :: where the output of /tmp/x would be non-deterministic. Patch by Ludovic Courtès . --- mtools-4.0.23/mformat.c 2019-04-21 00:12:01.496116195 +0200 +++ mtools-4.0.23/mformat.c 2019-04-21 00:12:36.675967157 +0200 @@ -927,6 +927,7 @@ void mformat(int argc, char **argv, int char *endptr; + memset(&boot.bytes, '\0', sizeof boot); hs = hs_set = 0; argtracks = 0; argheads = 0; f='/guix/'>guix
Wojtek's customized Guix
aboutsummaryrefslogtreecommitdiff
path: root/gnu/packages/patches/unzip-zipbomb-part3.patch
AgeCommit message (Expand)Author
2021-03-14gnu: unzip: Add patches from Fedora [security fixes]....Non-exhaustively fixes CVE-2016-9844, CVE-2018-1000035, CVE-2018-18384, and CVE-2019-13232. * gnu/packages/patches/unzip-COVSCAN-fix-unterminated-string.patch, gnu/packages/patches/unzip-CVE-2016-9844.patch, gnu/packages/patches/unzip-CVE-2018-1000035.patch, gnu/packages/patches/unzip-CVE-2018-18384.patch, gnu/packages/patches/unzip-case-insensitive.patch, gnu/packages/patches/unzip-alt-iconv-utf8-print.patch, gnu/packages/patches/unzip-alt-iconv-utf8.patch, gnu/packages/patches/unzip-close.patch, gnu/packages/patches/unzip-exec-shield.patch, gnu/packages/patches/unzip-fix-recmatch.patch, gnu/packages/patches/unzip-manpage-fix.patch, gnu/packages/patches/unzip-overflow.patch, gnu/packages/patches/unzip-symlink.patch, gnu/packages/patches/unzip-timestamp.patch, gnu/packages/patches/unzip-valgrind.patch, gnu/packages/patches/unzip-x-option.patch, gnu/packages/patches/unzip-zipbomb-manpage.patch, gnu/packages/patches/unzip-zipbomb-part1.patch, gnu/packages/patches/unzip-zipbomb-part2.patch, gnu/packages/patches/unzip-zipbomb-part3.patch: New patches. * gnu/local.mk (dist_patch_DATA): Register them. * gnu/packages/compression.scm (unzip/fixed): New variable. Apply patches. (unzip)[replacement]: Graft. Léo Le Bouter