![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / src / usr.bin / gzip
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: netbsd-5-1-2-RELEASE
Revision 1.6.36.1 / (download) - annotate - [select for diffs], Fri Aug 19 20:58:33 2011 UTC (12 years, 8 months ago) by riz
Branch: netbsd-5-1
CVS Tags: netbsd-5-1-5-RELEASE,
netbsd-5-1-4-RELEASE,
netbsd-5-1-3-RELEASE,
netbsd-5-1-2-RELEASE,
netbsd-5-1-1-RELEASE
Changes since 1.6: +20 -13
lines
Diff to previous 1.6 (colored)
Pull up following revision(s) (requested by joerg in ticket #1661): xsrc/external/mit/libXfont/dist/src/fontfile/decompress.c: revision 1.2 xsrc/external/mit/libXfont/dist/src/fontfile/decompress.c: revision 1.3 src/usr.bin/gzip/zuncompress.c: revision 1.9-1.11 src/usr.bin/compress/zopen.c: revision 1.14-1.15 xsrc/xfree/xc/lib/font/fontfile/decompress.c: revision 1.2 xsrc/xfree/xc/extras/freetype2/src/lzw/zopen.c: revision 1.2 xsrc/external/mit/freetype/dist/src/lzw/ftzopen.c: revision 1.4 P Fix CVS-2011-2895, buffer overflow in decompress provisional fix for CVS-2011-2895, buffer overflow when uncompressing provisional fix for CVE-2011-2895, buffer overflow in decompression set errno on overflow return. Do proper input validation without penalizing performance. Do proper input validation. Allow decompressing all input streams. Increase robustness of LZW decoding to avoid buffer overflow on arbitrary manipulated input streams in combination with uninitalised memory. Increase strictness of LZW parser.