Package: swi-prolog | Debian Sources

Package: swi-prolog / 5.10.1-1+squeeze1

Metadata

Package	Version	Patches format
swi-prolog	5.10.1-1+squeeze1	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
CVE 2012 6089.diff \| (download)	src/pl-buffer.h \| 2 2 + 0 - 0 ! src/pl-os.c \| 19 11 + 8 - 0 ! 2 files changed, 13 insertions(+), 8 deletions(-)	[patch] fixed: possible buffer overrun in patch canonisation code. Pushes pointers on an automatic array without checking for overflow. Can be used for DoS attacks. Will be extremely hard to make it execute arbitrary code.
CVE 2012 6090.diff \| (download)	src/pl-glob.c \| 46 28 + 18 - 0 ! 1 file changed, 28 insertions(+), 18 deletions(-)	[patch] security: possible buffer overflows when expanding file-names with long paths. Affects expand_file_name/2. Can lead to crashes (DoS attacks) and possibly execution of arbitrary code if an attacker can control the names of the files searched for, e.g., if expand_file_name/2 is used in a directory to which an attacker can upload files for which he can control the name.

Patch

File delta

Description

CVE 2012 6089.diff | (download)

src/pl-buffer.h | 2 2 + 0 - 0 !
src/pl-os.c | 19 11 + 8 - 0 !
2 files changed, 13 insertions(+), 8 deletions(-)

 [patch] fixed: possible buffer overrun in patch canonisation code.

Pushes pointers on an automatic array without checking for overflow.
Can be used for DoS attacks.  Will be extremely hard to make it execute
arbitrary code.

CVE 2012 6090.diff | (download)

src/pl-glob.c | 46 28 + 18 - 0 !
1 file changed, 28 insertions(+), 18 deletions(-)

 [patch] security: possible buffer overflows when expanding
 file-names with long paths.  Affects expand_file_name/2.

Can lead to crashes (DoS attacks) and possibly execution of arbitrary
code if an attacker can control the names of the files searched for,
e.g., if expand_file_name/2 is used in a directory to which an attacker
can upload files for which he can control the name.