kernel
/
git
mirror of https://git.kernel.org/pub/scm/git/git.git
1
0
Fork 0
Code Releases Activity
Browse Source

color: protect against out-of-bounds reads and writes 

want_color_fd() is designed to work only with standard output and
error file descriptors and stores information about each descriptor in
an array. However, it doesn't verify that the passed-in descriptor
lives within that set, which, with a buggy caller, could lead to
access or assignment outside the array bounds.

Signed-off-by: Eric Sunshine <sunshine@sunshineco.com>
Acked-by: Johannes Schindelin <Johannes.Schindelin@gmx.de>
Signed-off-by: Jonathan Nieder <jrnieder@gmail.com>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
maint
Eric Sunshine 6 years ago committed by Junio C Hamano
parent
53f9a3e157
commit
65bb21e77e
1 changed files with 3 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 3
      color.c

3
color.c
Unescape View File

@ -343,6 +343,9 @@ int want_color_fd(int fd, int var) @@ -343,6 +343,9 @@ int want_color_fd(int fd, int var)

static int want_auto[3] = { -1, -1, -1 };

if (fd < 1 || fd >= ARRAY_SIZE(want_auto))
BUG("file descriptor out of range: %d", fd);

if (var < 0)
var = git_use_color_default;


Write Preview
Loading…
Cancel
Save