[Forensics-changes] [yara] 01/02: Added fix for possible buffer overrun in PE module
Hilko Bengen
bengen at moszumanska.debian.org
Sun Aug 2 21:12:44 UTC 2015
This is an automated email from the git hooks/post-receive script.
bengen pushed a commit to branch master
in repository yara.
commit df6331bc0fd89a7b120e527f79332d5b460e715f
Author: Hilko Bengen <bengen at debian.org>
Date: Sun Aug 2 23:05:35 2015 +0200
Added fix for possible buffer overrun in PE module
---
...ossible-buffer-overrun-in-pe_parse_header.patch | 24 ++++++++++++++++++++++
debian/patches/series | 1 +
2 files changed, 25 insertions(+)
diff --git a/debian/patches/0001-Fix-possible-buffer-overrun-in-pe_parse_header.patch b/debian/patches/0001-Fix-possible-buffer-overrun-in-pe_parse_header.patch
new file mode 100644
index 0000000..ccfafc4
--- /dev/null
+++ b/debian/patches/0001-Fix-possible-buffer-overrun-in-pe_parse_header.patch
@@ -0,0 +1,24 @@
+From: Hilko Bengen <bengen at debian.org>
+Date: Sun, 2 Aug 2015 23:04:58 +0200
+Subject: Fix possible buffer overrun in pe_parse_header
+
+(See upstream commits 6ad11828a8d9784777f50236930112f8d3360f1b and
+14dbf62b132c1d7294fa3b4a535d5fec3f6246b9)
+---
+ libyara/modules/pe.c | 3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/libyara/modules/pe.c b/libyara/modules/pe.c
+index 848822d..4dcc13c 100644
+--- a/libyara/modules/pe.c
++++ b/libyara/modules/pe.c
+@@ -1304,7 +1304,8 @@ void pe_parse_header(
+ if (!struct_fits_in_pe(pe, section, IMAGE_SECTION_HEADER))
+ break;
+
+- strlcpy(section_name, (char*) section->Name, IMAGE_SIZEOF_SHORT_NAME + 1);
++ strncpy(section_name, (char*) section->Name, IMAGE_SIZEOF_SHORT_NAME);
++ section_name[IMAGE_SIZEOF_SHORT_NAME] = '\0';
+
+ set_string(
+ section_name,
diff --git a/debian/patches/series b/debian/patches/series
new file mode 100644
index 0000000..8f463f8
--- /dev/null
+++ b/debian/patches/series
@@ -0,0 +1 @@
+0001-Fix-possible-buffer-overrun-in-pe_parse_header.patch
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/forensics/yara.git
More information about the forensics-changes
mailing list