diff options
author | Oliver Kiddle <okiddle@yahoo.co.uk> | 2018-03-24 15:02:41 +0100 |
---|---|---|
committer | Oliver Kiddle <okiddle@yahoo.co.uk> | 2018-03-24 15:04:02 +0100 |
commit | 679b71ec4d852037fe5f73d35bf557b0f406c8d4 (patch) | |
tree | 234f10ef180dd3599bc8f0076d433865616f4dd2 /Src/exec.c | |
parent | beadc29214926723d3a83cdecb2016283c247054 (diff) | |
download | zsh-679b71ec4d852037fe5f73d35bf557b0f406c8d4.tar.gz zsh-679b71ec4d852037fe5f73d35bf557b0f406c8d4.tar.xz zsh-679b71ec4d852037fe5f73d35bf557b0f406c8d4.zip |
42518, CVE-2018-1071: check bounds when copying path in hashcmd()
Diffstat (limited to 'Src/exec.c')
-rw-r--r-- | Src/exec.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/Src/exec.c b/Src/exec.c index 35b0bb191..e154d1249 100644 --- a/Src/exec.c +++ b/Src/exec.c @@ -934,7 +934,7 @@ hashcmd(char *arg0, char **pp) for (; *pp; pp++) if (**pp == '/') { s = buf; - strucpy(&s, *pp); + struncpy(&s, *pp, PATH_MAX); *s++ = '/'; if ((s - buf) + strlen(arg0) >= PATH_MAX) continue; |