git.cameronkatri.com Git - bsdgames-darwin.git/commit

]> git.cameronkatri.com Git - bsdgames-darwin.git/commit

git.ckatri.com / bsdgames-darwin.git / commit

author	drochner <drochner@NetBSD.org>
	Thu, 1 Jun 2006 16:12:27 +0000 (16:12 +0000)
committer	drochner <drochner@NetBSD.org>
	Thu, 1 Jun 2006 16:12:27 +0000 (16:12 +0000)
commit	d8bc1d48404a4b9487e12764de024eb5e435c77a
tree	c7ae257f0d710a1e5944dbc9c3e289cd6b9eff90	tree \| snapshot
parent	cc268dec31a1421ca85abfcbf593e18570d3e010	commit \| diff

Better check data read from tetris.scores before use as array indices etc.
This is CVE-2006-1539, files against Gentoo Linux, the patch is from
Gentoo.
A standard NetBSD installation is not as much risk because tetris is
sgid "games", and users shouldn't be in that group.

tetris/scores.c

diff | blob | history

Port of NetBSD games to Darwin

RSS Atom