1 http://cvs.fedoraproject.org/viewvc/devel/gzip/gzip-1.3.5-cve-2006-4338.patch?view=co
3 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4338
5 --- gzip-1.3.3/unlzh.c.4338 2006-09-07 10:49:31.000000000 +0200
6 +++ gzip-1.3.3/unlzh.c 2006-09-07 11:37:53.000000000 +0200
8 if (bitbuf & mask) c = right[c];
12 + } while (c >= NT && (mask || c != left[c]));
14 fillbuf((int) pt_len[c]);
17 if (bitbuf & mask) j = right[j];
21 + } while (j >= NC && (mask || j != left[j]));
23 fillbuf((int) c_len[j]);
26 if (bitbuf & mask) j = right[j];
30 + } while (j >= NP && (mask || j != left[j]));
32 fillbuf((int) pt_len[j]);
33 if (j != 0) j = ((unsigned) 1 << (j - 1)) + getbits((int) (j - 1));