Package: pcre3
Followup-For: Bug #324531
Patch extracted from difference between upstream versions 6.0 and 6.1,
modified to patch version 4.5. Patch is attached.
Regards,
Sven
-- System Information:
Debian Release: 3.1
APT prefers experimental
APT policy: (400, 'experimental'), (90, 'testing'), (50, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.11.12-incase
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
--- pcre.c 2003-12-10 17:45:44.000000000 +0100
+++ ../pcre.c 2005-08-22 19:49:14.673426894 +0200
@@ -4755,6 +4755,7 @@
options = (options | set) & (~unset);
set = unset = 0; /* To save length */
item_count--; /* To allow for several */
+ length +=2; /* avoid CAN-2005-2491 */
}
/* Fall through */
