diff options
author | Greg Brockman <gdb@MIT.EDU> | 2010-07-20 06:46:21 +0200 |
---|---|---|
committer | Junio C Hamano <gitster@pobox.com> | 2010-07-20 18:17:39 +0200 |
commit | 3c9d0414ed2db0167e6c828b547be8fc9f88fccc (patch) | |
tree | 7931e35acd4458bdfa34050aead1209af12dbb24 /setup.c | |
parent | update-server-info: Shorten read_pack_info_file() (diff) | |
download | git-3c9d0414ed2db0167e6c828b547be8fc9f88fccc.tar.xz git-3c9d0414ed2db0167e6c828b547be8fc9f88fccc.zip |
Check size of path buffer before writing into it
This prevents a buffer overrun that could otherwise be triggered by
creating a file called '.git' with contents
gitdir: (something really long)
Signed-off-by: Greg Brockman <gdb@mit.edu>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to '')
-rw-r--r-- | setup.c | 2 |
1 files changed, 2 insertions, 0 deletions
@@ -170,6 +170,8 @@ static int is_git_directory(const char *suspect) char path[PATH_MAX]; size_t len = strlen(suspect); + if (PATH_MAX <= len + strlen("/objects")) + die("Too long path: %.*s", 60, suspect); strcpy(path, suspect); if (getenv(DB_ENVIRONMENT)) { if (access(getenv(DB_ENVIRONMENT), X_OK)) |