Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
d6eaf99167
NetBSD/usr.bin/gzip
History
christos d6eaf99167 Coverity CID 1264915, Via FreeBSD (Xin Li) 
When reading in the original file name from gzip header, we read
in PATH_MAX + 1 bytes from the file.  In r281500, strrchr() is
used to strip possible path portion of the file name to mitigate
a possible attack.  Unfortunately, strrchr() expects a buffer
that is NUL-terminated, and since we are processing potentially
untrusted data, we can not assert that be always true.

Solve this by reading in one less byte (now PATH_MAX) and
explicitly terminate the buffer after the read size with NUL.
2015-04-15 02:29:12 +00:00
..
gzexe
gzexe.1
gzip.1 Document xz decompression support better. From Joachim Henke on netbsd-docs. 2015-04-06 21:41:17 +00:00
gzip.c Coverity CID 1264915, Via FreeBSD (Xin Li) 2015-04-15 02:29:12 +00:00
Makefile Add zfgrep that fell off from last update 2013-11-13 11:12:24 +00:00
unbzip2.c apply a change from Xin LI <delphij@delphij.net> to avoid problems when 2009-12-05 03:23:37 +00:00
unpack.c pull across a few changes from the freebsd folks: 2010-11-06 21:42:32 +00:00
unxz.c add copyright 2011-09-30 01:32:21 +00:00
zdiff Consistently use -- for all programs called. Drop some redundant flags 2010-04-14 20:30:28 +00:00
zdiff.1 Sort SEE ALSO, fix an xref. 2010-04-14 19:52:05 +00:00
zforce
zforce.1
zgrep fferentiate zegrep and zfgrep by their basename only, so they can be 2013-07-25 12:25:23 +00:00
zgrep.1
zmore fix == compatibility problem 2013-12-06 13:33:15 +00:00
zmore.1 Added zless(1) - comes in the lastest version of zmore(1) from OpenBSD 2013-11-12 21:58:37 +00:00
znew
znew.1
zuncompress.c Do proper input validation without penalizing performance. 2011-08-16 13:55:01 +00:00