4fabc4a3b9
- Add three patches from NetBSD pkgsrc for fix CVE's: CVE-2005-3183 (files/patch-Library_src_HTBound.c) CVE-2009-3560 (files/patch-modules_expat_xmlparse_xmlparse.c) CVE-2009-3720 (files/patch-modules_expat_xmltok_xmltok__impl.c) - Add License - Add USES=ssl - Strip .so files (Q/A warnings) - Regenerate old patches - Pass MAINTAINER to submitter PR: 214546 Submitted by: Danilo G. Baio <dbaio@bsd.com.br> Approved by: marius@nuenneri.ch (maintainer) Security: CVE-2009-3720 Security: CVE-2009-3560 Security: CVE-2005-3183 Security: https://vuxml.FreeBSD.org/freebsd/18449f92-ab39-11e6-8011-005056925db4.html MFH: 2016Q4
14 lines
371 B
C
14 lines
371 B
C
# CVE-2009-3720
|
|
|
|
--- modules/expat/xmltok/xmltok_impl.c.orig 2000-08-28 08:52:01 UTC
|
|
+++ modules/expat/xmltok/xmltok_impl.c
|
|
@@ -1753,7 +1753,7 @@ void PREFIX(updatePosition)(const ENCODI
|
|
const char *end,
|
|
POSITION *pos)
|
|
{
|
|
- while (ptr != end) {
|
|
+ while (ptr < end) {
|
|
switch (BYTE_TYPE(enc, ptr)) {
|
|
#define LEAD_CASE(n) \
|
|
case BT_LEAD ## n: \
|