diff options
Diffstat (limited to 'net-mail/metamail/files/metamail-2.7.45.3-CVE-2006-0709.patch')
-rw-r--r-- | net-mail/metamail/files/metamail-2.7.45.3-CVE-2006-0709.patch | 40 |
1 files changed, 40 insertions, 0 deletions
diff --git a/net-mail/metamail/files/metamail-2.7.45.3-CVE-2006-0709.patch b/net-mail/metamail/files/metamail-2.7.45.3-CVE-2006-0709.patch new file mode 100644 index 000000000000..6572a514c37c --- /dev/null +++ b/net-mail/metamail/files/metamail-2.7.45.3-CVE-2006-0709.patch @@ -0,0 +1,40 @@ +--- src/src/metamail/metamail.c.old 2006-03-14 10:13:35.000000000 -0800 ++++ src/src/metamail/metamail.c 2006-03-14 10:11:52.000000000 -0800 +@@ -313,7 +313,7 @@ + WroteSquirrelFile = 0; + } + LineBuf = XMALLOC(char, LINE_BUF_SIZE); +- sprintf(LineBuf, "--%s", boundary); ++ snprintf(LineBuf, LINE_BUF_SIZE, "--%s", boundary); + strcpy(boundary, LineBuf); + boundarylen = strlen(boundary); + if (BoundaryCt >= BoundaryAlloc) { +@@ -1712,7 +1712,7 @@ + if (boundary[0] == '"') { + boundary=UnquoteString(boundary); + } +- sprintf(LineBuf, "--%s", boundary); ++ snprintf(LineBuf, LINE_BUF_SIZE, "--%s", boundary); + strcpy(boundary, LineBuf); + boundarylen = strlen(boundary); + if (BoundaryCt >= BoundaryAlloc) { +--- src/metamail/metamail.c.old 2006-03-14 10:12:39.000000000 -0800 ++++ src/metamail/metamail.c 2006-03-14 10:14:53.000000000 -0800 +@@ -445,7 +445,7 @@ + } + LineBuf = malloc(LINE_BUF_SIZE); + if (!LineBuf) ExitWithError(nomem); +- sprintf(LineBuf, "--%s", boundary); ++ snprintf(LineBuf, LINE_BUF_SIZE, "--%s", boundary); + strcpy(boundary, LineBuf); + boundarylen = strlen(boundary); + if (BoundaryCt >= BoundaryAlloc) { +@@ -2115,7 +2115,7 @@ + if (boundary[0] == '"') { + boundary=UnquoteString(boundary); + } +- sprintf(LineBuf, "--%s", boundary); ++ snprintf(LineBuf, LINE_BUF_SIZE, "--%s", boundary); + strcpy(boundary, LineBuf); + boundarylen = strlen(boundary); + if (BoundaryCt >= BoundaryAlloc) { |