From owner-cvs-src-old@FreeBSD.ORG Thu Mar 25 20:07:50 2010 Return-Path: Delivered-To: cvs-src-old@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 860B41065847 for ; Thu, 25 Mar 2010 20:07:50 +0000 (UTC) (envelope-from delphij@FreeBSD.org) Received: from repoman.freebsd.org (repoman.freebsd.org [IPv6:2001:4f8:fff6::29]) by mx1.freebsd.org (Postfix) with ESMTP id 744F58FC1E for ; Thu, 25 Mar 2010 20:07:50 +0000 (UTC) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.14.3/8.14.3) with ESMTP id o2PK7oqA076072 for ; Thu, 25 Mar 2010 20:07:50 GMT (envelope-from delphij@repoman.freebsd.org) Received: (from svn2cvs@localhost) by repoman.freebsd.org (8.14.3/8.14.3/Submit) id o2PK7oTY076071 for cvs-src-old@freebsd.org; Thu, 25 Mar 2010 20:07:50 GMT (envelope-from delphij@repoman.freebsd.org) Message-Id: <201003252007.o2PK7oTY076071@repoman.freebsd.org> X-Authentication-Warning: repoman.freebsd.org: svn2cvs set sender to delphij@repoman.freebsd.org using -f From: Xin LI Date: Thu, 25 Mar 2010 20:07:30 +0000 (UTC) To: cvs-src-old@freebsd.org X-FreeBSD-CVS-Branch: RELENG_6 Subject: cvs commit: src/contrib/cpio/lib rtapelib.c X-BeenThere: cvs-src-old@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: **OBSOLETE** CVS commit messages for the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 Mar 2010 20:07:50 -0000 delphij 2010-03-25 20:07:30 UTC FreeBSD src repository Modified files: (Branch: RELENG_6) contrib/cpio/lib rtapelib.c Log: SVN rev 205655 on 2010-03-25 20:07:30Z by delphij MFC r205654: The rmt client in GNU cpio could have a heap overflow when a malicious remote tape service returns deliberately crafted packets containing more data than requested. Fix this by checking the returned amount of data and bail out when it is more than what we requested. PR: gnu/145010 Submitted by: naddy Reviewed by: imp Security: CVE-2010-0624 Revision Changes Path 1.1.1.1.2.2 +2 -1 src/contrib/cpio/lib/rtapelib.c