Probable off by one buffer overflow in .../xorgconfig/xorgconfig.c
X.Org Bug #11858 <http://bugs.freedesktop.org/show_bug.cgi?id=11858> Patch #11005 <http://bugs.freedesktop.org/attachment.cgi?id=11005>
This commit is contained in:
parent
e717eb82dc
commit
f6aa2200f2
|
@ -2442,7 +2442,7 @@ write_fontpath_section(FILE *f)
|
|||
len = nextdir - thisdir;
|
||||
nextdir++;
|
||||
}
|
||||
if (len > sizeof(cur))
|
||||
if (len >= sizeof(cur))
|
||||
continue;
|
||||
strncpy(cur, thisdir, len);
|
||||
cur[len] = '\0';
|
||||
|
|
Loading…
Reference in New Issue
Block a user