kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/lang/python24/patches/patch-bf
drochner ed29f353e5 add patches from upstream svn rev.65333, fix integer overflows in 
memory allocation (CVE-2008-2315)
2008-08-05 10:13:34 +00:00

19 lines
674 B
Text
Raw Blame History

$NetBSD: patch-bf,v 1.1 2008/08/05 10:13:34 drochner Exp $
--- Objects/tupleobject.c.orig 2006-03-17 20:04:15.000000000 +0100
+++ Objects/tupleobject.c
@@ -60,11 +60,12 @@ PyTuple_New(register int size)
int nbytes = size * sizeof(PyObject *);
/* Check for overflow */
if (nbytes / sizeof(PyObject *) != (size_t)size ||
- (nbytes += sizeof(PyTupleObject) - sizeof(PyObject *))
- <= 0)
+ (nbytes > INT_MAX - sizeof(PyTupleObject) - sizeof(PyObject *)))
{
return PyErr_NoMemory();
}
+ nbytes += sizeof(PyTupleObject) - sizeof(PyObject *);
+
op = PyObject_GC_NewVar(PyTupleObject, &PyTuple_Type, size);
if (op == NULL)
return NULL;
Reference in a new issue View git blame Copy permalink