source: trunk/server/common/patches/gzip-cve-2009-2624.patch @ 1446

Last change on this file since 1446 was 1433, checked in by mitchb, 16 years ago
Scriptsify gzip to patch for CVE-2009-2624 and CVE-2010-0001
File size: 596 bytes

  • inflate.c

    old new  
    335335  } while (--i);
    336336  if (c[0] == n)                /* null input--all zero length codes */
    337337  {
    338     q = (struct huft *) malloc (2 * sizeof *q);
     338    q = (struct huft *) malloc (3 * sizeof *q);
    339339    if (!q)
    340340      return 3;
    341     hufts += 2;
     341    hufts += 3;
    342342    q[0].v.t = (struct huft *) NULL;
    343343    q[1].e = 99;    /* invalid code marker */
    344344    q[1].b = 1;
     345    q[2].e = 99;    /* invalid code marker */
     346    q[2].b = 1;
    345347    *t = q + 1;
    346348    *m = 1;
    347349    return 0;
Note: See TracBrowser for help on using the repository browser.