Added a Patch to fix a local privilege escalation in udev.

[ipfire-2.x.git] / src / patches / udev-CVE-2009-1186.patch

--- udev-141/udev/lib/libudev-util.c.CVE-2009-1186      2009-04-08 09:04:26.000000000 -0400
+++ udev-141/udev/lib/libudev-util.c    2009-04-15 13:25:10.000000000 -0400
@@ -9,6 +9,7 @@
  * version 2.1 of the License, or (at your option) any later version.
  */
 
+#include <stdint.h>
 #include <stdio.h>
 #include <stdlib.h>
 #include <stddef.h>
@@ -103,6 +104,9 @@ int util_log_priority(const char *priori
 
 size_t util_path_encode(char *s, size_t len)
 {
+        if (len == 0 || len > (SIZE_MAX - 1) / 4)
+               return 0;
+
        char t[(len * 4)+1];
        size_t i, j;