diff options
| author | Greg Brockman <gdb@MIT.EDU> | 2010-07-20 00:46:21 -0400 | 
|---|---|---|
| committer | Junio C Hamano <gitster@pobox.com> | 2010-07-20 09:17:39 -0700 | 
| commit | 3c9d0414ed2db0167e6c828b547be8fc9f88fccc (patch) | |
| tree | 7931e35acd4458bdfa34050aead1209af12dbb24 /setup.c | |
| parent | c173dad58787a7f11a526dbcdaa5a2fe9ff1c87f (diff) | |
| download | git-3c9d0414ed2db0167e6c828b547be8fc9f88fccc.tar.gz | |
Check size of path buffer before writing into it
This prevents a buffer overrun that could otherwise be triggered by
creating a file called '.git' with contents
  gitdir: (something really long)
Signed-off-by: Greg Brockman <gdb@mit.edu>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to 'setup.c')
| -rw-r--r-- | setup.c | 2 | 
1 files changed, 2 insertions, 0 deletions
| @@ -170,6 +170,8 @@ static int is_git_directory(const char *suspect)  	char path[PATH_MAX];  	size_t len = strlen(suspect); +	if (PATH_MAX <= len + strlen("/objects")) +		die("Too long path: %.*s", 60, suspect);  	strcpy(path, suspect);  	if (getenv(DB_ENVIRONMENT)) {  		if (access(getenv(DB_ENVIRONMENT), X_OK)) | 
