[BLFS Trac] #3082: S-Lang-2.2.2 buffer-overflow bug

BLFS Trac trac at linuxfromscratch.org
Tue Mar 30 10:56:10 PDT 2010


#3082: S-Lang-2.2.2 buffer-overflow bug
-------------------------------------+--------------------------------------
 Reporter:  ag@…                     |       Owner:  blfs-book@…                   
     Type:  defect                   |      Status:  new                           
 Priority:  normal                   |   Milestone:  future                        
Component:  BOOK                     |     Version:  SVN                           
 Severity:  major                    |    Keywords:                                
-------------------------------------+--------------------------------------
 In slang pre2.2.2 (change 9) fixed a possible access violation (in aget)
 when using a range array as an index.

 [https://opensvn.csie.org/viewcvs.cgi/slang/trunk/src/slagetput.inc?r1=301&r2=376&rev=376&root=jedsoft]

 The following trivial sed should fix also the same problem with aput.

 {{{
 sed -i 's/<=/</' src/slagetput.inc
 }}}

 This fix pulled from the new created git repository (change 22) and I
 opened this ticket after a discussion with the author of S-Lang who kindly
 informed me about the severity of this bug.

-- 
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/3082>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch



More information about the blfs-book mailing list