diff options
| author |   Chuck Short <zul@gentoo.org> | 2004-04-05 15:04:17 +0000 |
|---|---|---|
| committer | Chuck Short <zul@gentoo.org> | 2004-04-05 15:04:17 +0000 |
| commit | 274e215857e33ddf47f3f00bc44c2a0495ed8602 (patch) | |
| tree | a177cdfe397ef3ab2f831205990ceee56a4631d8 /net-irc/xchat/files | |
| parent | Added djbfft for a52dec (diff) | |
| download | gentoo-2-274e215857e33ddf47f3f00bc44c2a0495ed8602.tar.gz gentoo-2-274e215857e33ddf47f3f00bc44c2a0495ed8602.tar.bz2 gentoo-2-274e215857e33ddf47f3f00bc44c2a0495ed8602.zip | |
Added patch to fix proxy vulnerabiltiy. Applied patch to affected versions.
Diffstat (limited to 'net-irc/xchat/files')
| -rw-r--r-- | net-irc/xchat/files/xc208-fixsocks5.diff | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/net-irc/xchat/files/xc208-fixsocks5.diff b/net-irc/xchat/files/xc208-fixsocks5.diff new file mode 100644 index 000000000000..816801477075 --- /dev/null +++ b/net-irc/xchat/files/xc208-fixsocks5.diff @@ -0,0 +1,22 @@ +# Fix broken Socks5 traversal in xchat <= 2.0.8 +diff -ru xchat-2.0.8/src/common/server.c xchat-2.0.9/src/common/server.c +--- xchat-2.0.8/src/common/server.c 2004-03-16 15:33:47.000000000 +1100 ++++ xchat-2.0.8p1/src/common/server.c 2004-04-05 15:33:15.000000000 +1000 +@@ -1054,7 +1054,7 @@ + struct sock5_connect1 sc1; + unsigned char *sc2; + unsigned int packetlen, addrlen; +- unsigned char buf[10]; ++ unsigned char buf[260]; + + sc1.version = 5; + sc1.nmethods = 1; +@@ -1095,7 +1095,7 @@ + { + if (recv (sok, buf, 1, 0) != 1) + return 1; +- packetlen = buf[0] + 2; ++ packetlen = buf[0] + 2; /* can't exceed 260 */ + if (recv (sok, buf, packetlen, 0) != packetlen) + return 1; + } |