thr3ads.net - Secure testing team - [Secure-testing-team] Bug#548198: CVE-2009-2905: buffer overflow [Sep 2009]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Steffen Joeris

2009-Sep-24 12:55 UTC

[Secure-testing-team] Bug#548198: CVE-2009-2905: buffer overflow

Package: newt
Severity: grave
Tags: security patch

Hi

There is a buffer overflow in textbox.c. This issue is CVE-2009-2905.

In textbox.c the following patch has been applied.

-       result = malloc(strlen(text) + (strlen(text) / width) + 2);
+       result = malloc(strlen(text) + (strlen(text) / (width - 1)) + 2);

Cheers
Steffen

Secure testing team - Sep 2009 - Bug#548198: CVE-2009-2905: buffer overflow

[Secure-testing-team] Bug#548198: CVE-2009-2905: buffer overflow