Author: aredridel Date: Sat Nov 4 18:13:05 2006 GMT Module: SOURCES Tag: HEAD ---- Log message: - added; fixes CVE-2006-5467.
---- Files affected: SOURCES: ruby-1.8.5-cgi-dos-1.patch (NONE -> 1.1) (NEW) ---- Diffs: ================================================================ Index: SOURCES/ruby-1.8.5-cgi-dos-1.patch diff -u /dev/null SOURCES/ruby-1.8.5-cgi-dos-1.patch:1.1 --- /dev/null Sat Nov 4 19:13:05 2006 +++ SOURCES/ruby-1.8.5-cgi-dos-1.patch Sat Nov 4 19:13:00 2006 @@ -0,0 +1,11 @@ +--- lib/cgi.rb.orig 2006-08-22 18:38:19.000000000 +0900 ++++ lib/cgi.rb 2006-11-03 00:18:53.000000000 +0900 +@@ -1018,7 +1018,7 @@ class CGI + else + stdinput.read(content_length) + end +- if c.nil? ++ if c.nil? || c.empty? + raise EOFError, "bad content body" + end + buf.concat(c) ================================================================ _______________________________________________ pld-cvs-commit mailing list [email protected] http://lists.pld-linux.org/mailman/listinfo/pld-cvs-commit
