~ubuntu-branches/ubuntu/lucid/kdelibs/lucid-updates

Viewing changes to debian/patches/security_05_CVE-2009-0689.diff

Committer: Bazaar Package Importer
Author(s): Jamie Strandboge
Date: 2009-12-07 15:19:01 UTC
Revision ID: james.westby@ubuntu.com-20091207151901-t9km5r31nqmkojv4

Tags: 4:3.5.10.dfsg.1-2.1ubuntu4

* SECURITY UPDATE: fix buffer overflow when converting string to float
  - debian/patches/security_05_CVE-2009-0689.diff: adjust Kmax to handle
    large field numbers in kjs/dtoa.cpp
  - CVE-2009-0689

files added:
debian/patches/security_05_CVE-2009-0689.diff

files modified:
debian/changelog

Show diffs side-by-side

added added

removed removed

debian/patches/security_05_CVE-2009-0689.diff

Description: fix array overrun (CVE-2009-0689)

Origin: http://websvn.kde.org/?view=revision&revision=1052100

diff -Nur -x '*.orig' -x '*~' kdelibs-3.5.10/kjs/dtoa.cpp kdelibs-3.5.10.new/kjs/dtoa.cpp

--- kdelibs-3.5.10/kjs/dtoa.cpp 2005-09-10 03:27:24.000000000 -0500

+++ kdelibs-3.5.10.new/kjs/dtoa.cpp 2009-12-03 08:39:37.333058232 -0600

@@ -487,7 +487,7 @@

#define FREE_DTOA_LOCK(n) /*nothing*/

#endif

-#define Kmax 15

+#define Kmax (sizeof(size_t) << 3)

struct

Bigint {

Older »