[Xfce-bugs] [Bug 12444] New: [PATCH] Fix potential buffer overflow

Thu Feb 11 17:18:37 CET 2016

https://bugzilla.xfce.org/show_bug.cgi?id=12444

            Bug ID: 12444
           Summary: [PATCH] Fix potential buffer overflow
    Classification: Xfce
           Product: Thunar
           Version: unspecified
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: Medium
         Component: core
          Assignee: xfce-bugs at xfce.org
          Reporter: mikhefr at gmail.com
        QA Contact: nick at xfce.org
                CC: benny at xfce.org, hjudt at xfce.org

Created attachment 6608
  --> https://bugzilla.xfce.org/attachment.cgi?id=6608&action=edit
0001-Fix-potential-buffer-overflow.patch

Use g_malloc_n() instead of g_malloc to avoid integer overflow.
This fixes CVE-2013-7447, see
http://www.openwall.com/lists/oss-security/2016/02/10/2 for details.

-- 
You are receiving this mail because:
You are the assignee for the bug.