head	1.2;
access;
symbols;
locks; strict;
comment	@# @;


1.2
date	2003.09.23.16.58.10;	author ache;	state dead;
branches;
next	1.1;

1.1
date	2003.07.31.16.07.05;	author dannyboy;	state Exp;
branches;
next	;


desc
@@


1.2
log
@Integrate official DOS-attack prevention patch
Add -- to tar args to stop hacking with "-"-started files in ftpconversions

Approved by: security-officer ('--' fix), portmgr
@
text
@--- src/realpath.c.orig	Mon Jul 28 16:18:15 2003
+++ src/realpath.c	Mon Jul 28 16:18:44 2003
@@@@ -299,7 +299,7 @@@@
 	rootd = 0;
 
     if (*wbuf) {
-	if (strlen(resolved) + strlen(wbuf) + rootd + 1 > MAXPATHLEN) {
+	if (strlen(resolved) + strlen(wbuf) + !rootd + 1 > MAXPATHLEN) {
 	    errno = ENAMETOOLONG;
 	    goto err1;
 	}
@


1.1
log
@Address CAN-2003-0466.

Submitted/approved by:	security-officer
@
text
@@

