Mercurial > vanilla
annotate compression/unzip/CVE-2018-1000035.patch @ 1106:477457540aa0
vanilla: update implicit dependencies paragraph
| author | David Demelier <markand@malikania.fr> |
|---|---|
| date | Tue, 17 Sep 2019 21:01:00 +0200 |
| parents | 8c4366128400 |
| children |
| rev | line source |
|---|---|
|
452
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
1 --- a/fileio.c 2014-12-05 05:06:05 -0600 |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
2 +++ b/fileio.c 2017-11-14 01:06:28 -0600 |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
3 @@ -1,5 +1,5 @@ |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
4 /* |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
5 - Copyright (c) 1990-2009 Info-ZIP. All rights reserved. |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
6 + Copyright (c) 1990-2017 Info-ZIP. All rights reserved. |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
7 |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
8 See the accompanying file LICENSE, version 2009-Jan-02 or later |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
9 (the contents of which are also included in unzip.h) for terms of use. |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
10 @@ -1582,6 +1582,8 @@ |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
11 int r = IZ_PW_ENTERED; |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
12 char *m; |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
13 char *prompt; |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
14 + char *ep; |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
15 + char *zp; |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
16 |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
17 #ifndef REENTRANT |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
18 /* tell picky compilers to shut up about "unused variable" warnings */ |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
19 @@ -1590,9 +1592,12 @@ |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
20 |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
21 if (*rcnt == 0) { /* First call for current entry */ |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
22 *rcnt = 2; |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
23 - if ((prompt = (char *)malloc(2*FILNAMSIZ + 15)) != (char *)NULL) { |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
24 - sprintf(prompt, LoadFarString(PasswPrompt), |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
25 - FnFilter1(zfn), FnFilter2(efn)); |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
26 + zp = FnFilter1( zfn); |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
27 + ep = FnFilter2( efn); |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
28 + prompt = (char *)malloc( /* Slightly too long (2* "%s"). */ |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
29 + sizeof( PasswPrompt)+ strlen( zp)+ strlen( ep)); |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
30 + if (prompt != (char *)NULL) { |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
31 + sprintf(prompt, LoadFarString(PasswPrompt), zp, ep); |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
32 m = prompt; |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
33 } else |
|
8c4366128400
compression/unzip: initial import, closes #1553
David Demelier <markand@malikania.fr>
parents:
diff
changeset
|
34 m = (char *)LoadFarString(PasswPrompt2); |