author | Danek Duvall <danek.duvall@oracle.com> |
Thu, 13 Oct 2016 08:59:50 -0700 | |
changeset 7102 | 64f95a1ef701 |
parent 6263 | 1cfbcff418a3 |
permissions | -rw-r--r-- |
Fix for CVE-2016-3189. For more details see: https://bugzilla.redhat.com/show_bug.cgi?id=1319648 Fix is already known upstream. --- bzip2-1.0.6/bzip2recover.c.orig 2016-06-20 14:21:27.313740691 -0700 +++ bzip2-1.0.6/bzip2recover.c 2016-06-20 14:22:04.258099956 -0700 @@ -457,6 +457,7 @@ bsPutUChar ( bsWr, 0x50 ); bsPutUChar ( bsWr, 0x90 ); bsPutUInt32 ( bsWr, blockCRC ); bsClose ( bsWr ); + outFile = NULL; } if (wrBlock >= rbCtr) break; wrBlock++;