02-cddb-bufferoverflow.patch 504 Bytes
Newer Older
abveritas's avatar
abveritas committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15
Author: Moritz Muehlenhoff <jmm@inutil.org>
Description: CVE-2008-5030

diff -Naurp libcdaudio.orig/src/cddb.c libcdaudio/src/cddb.c
--- libcdaudio.orig/src/cddb.c	2008-09-07 23:53:16.000000000 +0000
+++ libcdaudio/src/cddb.c	2008-11-12 21:32:21.000000000 +0000
@@ -1679,7 +1679,7 @@ cddb_read_disc_data(int cd_desc, struct 
       free(file);
 	 
       while(!feof(cddb_data)) {
-	fgets(inbuffer, 512, cddb_data);			   
+	fgets(inbuffer, 256, cddb_data);
 	cddb_process_line(inbuffer, data);
       }