94b7368eef
For details, see: https://bugs.gentoo.org/635898 https://nvd.nist.gov/vuln/detail/CVE-2017-15953 https://nvd.nist.gov/vuln/detail/CVE-2017-15954 https://nvd.nist.gov/vuln/detail/CVE-2017-15955 https://github.com/extramaster/bchunk/issues/2 https://github.com/extramaster/bchunk/issues/3 https://github.com/extramaster/bchunk/issues/4
33 lines
833 B
Diff
33 lines
833 B
Diff
diff -urNZ bchunk-1.2.0.orig/bchunk.c bchunk-1.2.0/bchunk.c
|
|
--- a/bchunk.c 2017-10-30 18:03:58.658741629 +0000
|
|
+++ b/bchunk.c 2017-10-30 19:17:36.732855884 +0000
|
|
@@ -426,11 +426,11 @@
|
|
printf("\nTrack ");
|
|
if (!(p = strchr(p, ' '))) {
|
|
fprintf(stderr, "... ouch, no space after TRACK.\n");
|
|
- continue;
|
|
+ exit(3);
|
|
}
|
|
p++;
|
|
if (!(t = strchr(p, ' '))) {
|
|
fprintf(stderr, "... ouch, no space after track number.\n");
|
|
- continue;
|
|
+ exit(3);
|
|
}
|
|
*t = '\0';
|
|
|
|
@@ -460,12 +460,12 @@
|
|
} else if ((p = strstr(s, "INDEX"))) {
|
|
if (!(p = strchr(p, ' '))) {
|
|
printf("... ouch, no space after INDEX.\n");
|
|
- continue;
|
|
+ exit(3);
|
|
}
|
|
p++;
|
|
if (!(t = strchr(p, ' '))) {
|
|
printf("... ouch, no space after index number.\n");
|
|
- continue;
|
|
+ exit(3);
|
|
}
|
|
*t = '\0';
|
|
t++;
|