[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
PR/33551 CVS commit: [netbsd-4-0] src/gnu/dist/binutils/bfd
The following reply was made to PR bin/33551; it has been noted by GNATS.
From: Julian Coleman <jdc%netbsd.org@localhost>
Subject: PR/33551 CVS commit: [netbsd-4-0] src/gnu/dist/binutils/bfd
Date: Mon, 23 Jun 2008 06:37:17 +0000 (UTC)
Module Name: src
Committed By: jdc
Date: Mon Jun 23 06:37:17 UTC 2008
src/gnu/dist/binutils/bfd [netbsd-4-0]: tekhex.c
Pull up revision 1.2 (requested by adrianp in ticket #1160).
Fix for PR #33551 (a.k.a CVE-2006-2362)
Back port from the binutils CVS tree
Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation
GNU Binutils before 20060423, as used by GNU strings, allows context-dependent
attackers to cause a denial of service (application crash) and possibly
execute arbitrary code via a file with a crafted Tektronix Hex Format (TekHex)
record in which the length character is not a valid hexadecimal character.
To generate a diff of this commit:
cvs rdiff -r126.96.36.199 -r188.8.131.52.14.1 src/gnu/dist/binutils/bfd/tekhex.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Main Index |
Thread Index |