Package: dpkg
Version: 1.17.22-9
Severity: normal
In src/configure.c, in the 'show_diff' function, a buffer overflow in
the 'cmdbuf' may occur on a long "PAGER" variable.
from show_diff([..]):
> char cmdbuf[1024];
>
> sprintf(cmdbuf, DIFF " -Nu %.250s %.250s | %.250s",
> str_quote_meta(old), str_quote_meta(new),
> command_get_pager());
In command_get_pager(void):
> pager = getenv("PAGER");
--
-- Joshua Rogers <https://internot.info/>
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
