~ruther/guix-local

ref: c2c4e5b2ee7d3e9412822e87bd5aaedbfa40f9bd guix-local/gnu/packages/patches/grep-CVE-2015-1345.patch -rw-r--r-- 514 bytes
c2c4e5b2 — Ricardo Wurmus gnu: Add ruby-nokogumbo. 10 years ago 
                                                                                
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

Fix CVE-2015-1345.  From upstream commit
83a95bd8c8561875b948cadd417c653dbe7ef2e2
by Yuliy Pisetsky <ypisetsky@fb.com>.

diff --git a/src/kwset.c b/src/kwset.c
index 4003c8d..376f7c3 100644
--- a/src/kwset.c
+++ b/src/kwset.c
@@ -643,6 +643,8 @@ bmexec_trans (kwset_t kwset, char const *text, size_t size)
                     if (! tp)
                       return -1;
                     tp++;
+                    if (ep <= tp)
+                      break;
                   }
               }
           }