diff options
| author | Jim Meyering <jim@meyering.net> | 2005-03-12 10:59:38 +0000 |
|---|---|---|
| committer | Jim Meyering <jim@meyering.net> | 2005-03-12 10:59:38 +0000 |
| commit | 9894d59925a062d7538e8ee7442911618a877c97 (patch) | |
| tree | 02009a1da28934fecda40e0fdfa9ca285277ad6e /ChangeLog | |
| parent | e1ba36b6073ccb73bfc116a6c0361d6befa20494 (diff) | |
| download | coreutils-9894d59925a062d7538e8ee7442911618a877c97.tar.xz | |
*** empty log message ***
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 17 |
1 files changed, 16 insertions, 1 deletions
@@ -1,7 +1,22 @@ -2005-03-11 Paul Eggert <eggert@cs.ucla.edu> +2005-03-12 Jim Meyering <jim@meyering.net> * Version 5.3.1. + Add a little infrastructure to help prevent future bugs like the + one fixed below. + * src/stat.c (xstrcat): New function. + (print_statfs, print_stat): Add buf_len parameter and convert all + uses of strcat to xstrcat. Update callers. + (print_it): Call print_func with buf_len parameter. + + Invoking stat -c FMT with a lone format directive of %s, %f, %h, %s, + could cause a buffer overrun error. + * src/stat.c (print_it): Allocate 2 more bytes, to accommodate our + conversion of the stat %s format string to the longer printf %llu one. + Patch from Guochun Shi. + +2005-03-11 Paul Eggert <eggert@cs.ucla.edu> + * src/ls.c (TIME_STAMP_LEN_MAXIMUM): New constant. (long_time_expected_width, print_long_format): Use it, to avoid some possible denial-of-service attacks. |