freebsd-ports/www/w3c-httpd/files/patch-ca
Steve Price 5a5fbb4af2 Patch a potential buffer overflow from DFN-CERT#34784.
PR:		6851
Submitted by:	David Kelly <dkelly@nebula.tbe.com>
1998-08-09 00:10:45 +00:00

12 lines
362 B
Text

--- Daemon/Implementation/CGIParse.c.orig Wed Jun 3 12:38:15 1998
+++ Daemon/Implementation/CGIParse.c Wed Jun 3 12:38:41 1998
@@ -293,7 +293,8 @@
*cur = 0;
if (init) {
- printf("QUERY_STRING='%s'; export QUERY_STRING\n", query_string);
+ printf("QUERY_STRING='%s'; export QUERY_STRING\n",
+ sh_escape(query_string) );
exit(0);
}
}