Package: cgilib
Version: 0.6-1
Severity: important
Tags: patch
Content-Type: multipart/mixed; boundary="===============1572526208=="
MIME-Version: 1.0
From: deb...@igor2.repo.hu
To: Debian Bug Tracking System <sub...@bugs.debian.org>
X-Debug: to=sub...@bugs.debian.org from="mih...@igor2.repo.hu"
From: mih...@igor2.repo.hu
Subject: cgilib.patch: Typo in array indexing causes segfault on multi-value
parameters
X-Debbugs-Cc: deb...@igor2.repo.hu
This is a multi-part MIME message sent by reportbug.
--===============1572526208==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Package: cgilib0.6-1
Severity: important
Tags: patch
Dear Maintainer,
* What led up to the situation?
HTTP post parameter with the same name appears multiple times crashes
the lib in cgiInit() because of a typo in the array index of a debug
message.
* What was the outcome of this action?
Segfault.
-- System Information:
Debian Release: stretch/sid
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable'), (500, 'oldstable')
Architecture: i386 (i686)
Kernel: Linux 4.5.1retfie (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Init: sysvinit (via /sbin/init)
--===============1572526208==
Content-Type: text/x-diff; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename="cgilib.patch"
diff -uri cgilib-0.6-orig/cgi.c cgilib-0.6/cgi.c
--- cgilib-0.6-orig/cgi.c 2017-03-31 08:49:39.000000000 +0200
+++ cgilib-0.6/cgi.c 2017-03-31 08:54:30.990919349 +0200
@@ -637,7 +637,7 @@
free (result[k]->value);
free (value);
result[k]->value = sptr;
- cgiDebugOutput (1, "%s: %s", result[i]->name, result[i]->value);
+ cgiDebugOutput (1, "%s: %s", result[k]->name, result[k]->value);
}
}
cp = ++ip;
--===============1572526208==--
