Have a bugfix for buffer overflow (Bug 283658)
Asked by
Jupiter
Hello,
ther is a fix for bug 283658. The reported buffer overflow is caused by line 255 in file src/id3.c:
> char gen[ 5 ] = "( )";
This should be
> char gen[ 6 ] = "( )";
because later in 281
> sprintf( gen, "(%d)", genre ); /* XXX */
a buffer overflow occurs if the genre id has three digits (>99). Someone didn't think of the NULL termination. :-)
Actually, a patch has already been offered in
https:/
http://
Is there a chance, that this bug will be fixed in the next ubuntu release?
Thanks, Jupiter
Question information
- Language:
- English Edit question
- Status:
- Open
- For:
- Ubuntu grip Edit question
- Assignee:
- No assignee Edit question
- Last query:
- Last reply:
Can you help with this problem?
Provide an answer of your own, or ask Jupiter for more information if necessary.
To post a message you must log in.