mirror of
https://github.com/Stichting-MINIX-Research-Foundation/pkgsrc-ng.git
synced 2025-09-12 22:13:47 -04:00
31 lines
1.1 KiB
Plaintext
31 lines
1.1 KiB
Plaintext
$NetBSD: patch-ap,v 1.1 2011/03/11 15:18:43 drochner Exp $
|
|
|
|
CVE-2011-1145
|
|
|
|
--- DriverManager/SQLDriverConnect.c.orig 2010-04-13 16:38:26.000000000 +0000
|
|
+++ DriverManager/SQLDriverConnect.c
|
|
@@ -639,7 +639,7 @@ SQLRETURN SQLDriverConnect(
|
|
{
|
|
DMHDBC connection = (DMHDBC)hdbc;
|
|
struct con_struct con_struct;
|
|
- char *driver, *dsn = NULL, *filedsn, *tsavefile, savefile[ 128 ];
|
|
+ char *driver, *dsn = NULL, *filedsn, *tsavefile, savefile[ INI_MAX_PROPERTY_VALUE + 1 ];
|
|
char lib_name[ INI_MAX_PROPERTY_VALUE + 1 ];
|
|
char driver_name[ INI_MAX_PROPERTY_VALUE + 1 ];
|
|
SQLRETURN ret_from_connect;
|
|
@@ -944,7 +944,13 @@ SQLRETURN SQLDriverConnect(
|
|
tsavefile = __get_attribute_value( &con_struct, "SAVEFILE" );
|
|
if ( tsavefile )
|
|
{
|
|
- strcpy( savefile, tsavefile );
|
|
+ if ( strlen( tsavefile ) > INI_MAX_PROPERTY_VALUE ) {
|
|
+ memcpy( savefile, tsavefile, INI_MAX_PROPERTY_VALUE );
|
|
+ savefile[ INI_MAX_PROPERTY_VALUE ] = '\0';
|
|
+ }
|
|
+ else {
|
|
+ strcpy( savefile, tsavefile );
|
|
+ }
|
|
}
|
|
else
|
|
{
|