Package: libbsd | Debian Sources

Package: libbsd / 0.9.1-2+deb10u1

Metadata

Package	Version	Patches format
libbsd	0.9.1-2+deb10u1	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
CVE 2019 20367.patch \| (download)	src/nlist.c \| 6 4 + 2 - 0 ! 1 file changed, 4 insertions(+), 2 deletions(-)	[patch] nlist: fix out-of-bounds read on strtab When doing a string comparison for a symbol name from the string table, we should make sure we do a bounded comparison, otherwise a non-NUL terminated string might make the code read out-of-bounds. Warned-by: coverity

Patch

File delta

Description

CVE 2019 20367.patch | (download)

src/nlist.c | 6 4 + 2 - 0 !
1 file changed, 4 insertions(+), 2 deletions(-)

 [patch] nlist: fix out-of-bounds read on strtab

When doing a string comparison for a symbol name from the string table,
we should make sure we do a bounded comparison, otherwise a non-NUL
terminated string might make the code read out-of-bounds.

Warned-by: coverity