2006-11-30 Carlos Garcia Campos <carlosgc@gnome.org>
* ps/ps.c: (get_next_text):
Fix CVE-2006-5864.
+2006-11-30 Carlos Garcia Campos <carlosgc@gnome.org>
+
+ * ps/ps.c: (get_next_text):
+
+ Fix CVE-2006-5864.
+
2006-11-22 Carlos Garcia Campos <carlosgc@gnome.org>
* shell/ev-history.c: (ev_history_finalize), (ev_history_class_init):
int level = 0;
quoted = 1;
line++;
- while(*line && !(*line == ')' && level == 0)) {
+ while(*line && !(*line == ')' && level == 0)
+ && (cp - text) < PSLINELENGTH - 1) {
if(*line == '\\') {
if(*(line + 1) == 'n') {
*cp++ = '\n';
}
}
else {
- while(*line && !(*line == ' ' || *line == '\t' || *line == '\n'))
+ while(*line && !(*line == ' ' || *line == '\t' || *line == '\n')
+ && (cp - text) < PSLINELENGTH - 1)
*cp++ = *line++;
}
*cp = '\0';