I just checked the GNU git sources
(https://git.savannah.gnu.org/git/findutils.git)
the bug was fixed upstream
commit febde26dd0e66dda5d4060fa29b85443ddc6a865
Author: Bernhard Voelker <m...@bernhard-voelker.de>
Date: Mon Aug 28 23:15:12 2017 +0200
find: avoid buffer-overflow with -printf '%T+'
* find/print.c (format_date): Increase size of local variable
FMT to match the longest possible content.
Fixes https://bugs.debian.org/873032 reported upstream by
Andreas Metzler in https://savannah.gnu.org/bugs/?51841;
fix proposed by Kamil Dudka.
Bug introduced in commit v4.6.0-111-g95816b2, so no released version
ever saw this; therefore not adding a NEWS entry.
commit 95816b29d46fb6b64754d4a66e7d918b3f134a1f
Author: James Youngman <j...@gnu.org>
Date: Sun Jul 23 22:19:42 2017 +0100
find: avoid strftime's non-portable %F specifier.
* find/print.c (format_date): Avoid passing %F to strftime since
some implementation lack it. Pass the synonymous %Y-%m-%d
instead. This fixes a bug manifesting on HP Tru64 UNIX V5.1B.
Reported by Steven M. Schweda <s...@antinode.info>.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1730696
Title:
*** buffer overflow detected ***: find terminated
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/findutils/+bug/1730696/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
