Bug#993610: crafty: Potential Integer Overflow in tbdecode.h

Package: crafty Version: 23.4 Severity: normal Dear Maintainer, There seems to exist potential integer overflow in tbdecode.h . In line 647, (647) if (fread(temp, 1, HEADER_SIZE, fd) != HEADER_SIZE) ... (651) ptr = temp; (652) # define R4(i) \ (653) ((ptr[i] << 24) + (ptr[(i) + 1] << 16) + (pt

Bug#993588: wily: Potential Buffer Overflow in libmsg/connect.c

Package: wily Version: 0.13.41 Severity: normal Dear Maintainer, It seems that there exists a potential Buffer Overflow in libmsg/connect.c. In line 184, and 191, (184) if(!(disp = getenv("DISPLAY"))) { ... (191) sprintf(buf, "%s/wily%s%s", dir, pw->pw_name, disp); the variable disp is a previou