git-svn-id: http://svn.ipfire.org/svn/ipfire/IPFire/source@16 ea5c0bd1-69bd-2848-81d8-4f18e57aeed8

2026-05-11 09:48:24 +02:00 · 2006-02-15 21:15:54 +00:00
parent 6d63f4c4b3
commit cd1a292722
1206 changed files with 185026 additions and 0 deletions
--- a/src/patches/gzip-1.3.5-gunzip-dir.patch
+++ b/src/patches/gzip-1.3.5-gunzip-dir.patch
@@ -0,0 +1,14 @@
+fix CAN-2005-1228 directory traversal bug
+borrowed from fedora
+
+--- gzip-1.3.5/gzip.c.pom	2005-04-29 14:25:23.000000000 +0200
+++ gzip-1.3.5/gzip.c	2005-04-29 14:24:42.000000000 +0200
+@@ -1344,6 +1344,8 @@
+ 			error("corrupted input -- file name too large");
+ 		    }
+ 		}
+		char *base2 = base_name (base);   /* there should be problem with file name */
+		strcpy(base, base2);              /* in this name there can't be path */
+                 /* If necessary, adapt the name to local OS conventions: */
+                 if (!list) {
+                    MAKE_LEGAL_NAME(base);