diff options
| -rw-r--r-- | NEWS | 2 | ||||
| -rw-r--r-- | URPM.xs | 2 |
2 files changed, 3 insertions, 1 deletions
@@ -1,5 +1,7 @@ - do not try to parse current pointer when the line is invalid or empty (detected by valgrind) +- don't read/write after the string when the synthesis is slightly + malformed Version 3.40.1 - 28 June 2012 @@ -1897,7 +1897,7 @@ Pkg_filename(pkg) if (pkg->info) { char *eon; - if ((eon = strchr(pkg->info, '@')) != NULL) { + if ((eon = strchr(pkg->info, '@')) != NULL && strlen(eon) >= 3) { char savbuf[4]; memcpy(savbuf, eon, 4); /* there should be at least epoch and size described so (@0@0 minimum) */ memcpy(eon, ".rpm", 4); |