On 5 February 2016 at 10:26, Jens Rehsack <rehs...@gmail.com> wrote: > +commit 3007f797a1a596e954f44879a5a7267966186ba4 > +Author: Mike Frysinger <vap...@gentoo.org> > +Date: Fri Aug 28 17:08:49 2015 -0400 > + > + getmntent: fix memory corruption w/blank lines [BZ #18887] > + > + The fix for BZ #17273 introduced a single byte of memory corruption > when > + the line is entirely blank. It would walk back past the start of the > + buffer if the heap happened to be 0x20 or 0x09 and then write a NUL > byte. > + buffer = '\n'; > + end_ptr = buffer; > + while (end_ptr[-1] == ' ' || end_ptr[-1] == '\t') > + end_ptr--; > + *end_ptr = '\0'; > + > + Fix that and rework the tests. Adding the testcase for BZ #17273 to > the > + existing \040 parser does not really make sense as it's unrelated, and > + leads to confusing behavior: it implicitly relies on the new entry > being > + longer than the previous entry (since it just rewinds the FILE*). > Split > + it out into its own dedicated testcase instead. > + > + (cherry picked from commit b0e805fa0d6fea33745952df7b7f5442ca4c374f) > + >
This patch needs to have your Signed-off-by and Upstream-Status (Backport) tags in. Ross
-- _______________________________________________ Openembedded-core mailing list Openembedded-core@lists.openembedded.org http://lists.openembedded.org/mailman/listinfo/openembedded-core
