* debian/patches/10-buffer-overflow-fix.dpatch: (LP: #392372)
+ it turns out that the problem was a buffer whose size was
too small to include the null character at the end.
A sprintf() of a string of size 9 into a 9 bytes buffer:
sprintf(msf, "%02d:%02d:%02d", minutes, seconds, frames);
Thx Christian Hudon <email address hidden> for the patch
-- Stephan Hermann <email address hidden> Tue, 16 Feb 2010 16:14:53 +0000
This bug was fixed in the package cuetools - 1.3.1-7ubuntu1
---------------
cuetools (1.3.1-7ubuntu1) lucid; urgency=low
* debian/ patches/ 10-buffer- overflow- fix.dpatch: (LP: #392372)
+ it turns out that the problem was a buffer whose size was
too small to include the null character at the end.
A sprintf() of a string of size 9 into a 9 bytes buffer:
sprintf(msf, "%02d:%02d:%02d", minutes, seconds, frames);
Thx Christian Hudon <email address hidden> for the patch
-- Stephan Hermann <email address hidden> Tue, 16 Feb 2010 16:14:53 +0000