[Bug-wget] [PATCH] ftp: fix invalid pointer dereference in getftp()

bug-wget

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug-wget] [PATCH] ftp: fix invalid pointer dereference in getftp()

From:	Cong Ma
Subject:	[Bug-wget] [PATCH] ftp: fix invalid pointer dereference in getftp()
Date:	Tue, 16 Dec 2014 11:15:32 +0800
User-agent:	Heirloom mailx 12.5 7/5/10

In ftp.c, the return value of ftp_response() is not checked before using
the pointer respline.  Subsequent call ftp_expected_bytes (respline)
will possibly dereference the uninitialized pointer, thereby crashing
wget.

This patch moves the dereference of respline after the return-value
check, which should fix the crash.

The problem has been reported against Fedora's wget package[1].

Thanks for reviewing and best wishes,

Cong.


[1] https://bugzilla.redhat.com/show_bug.cgi?id=1169022

0001-ftp-fix-invalid-pointer-dereference-in-getftp.patch
Description: Text document

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug-wget] [PATCH] ftp: fix invalid pointer dereference in getftp(), Cong Ma <=
- Re: [Bug-wget] [PATCH] ftp: fix invalid pointer dereference in getftp(), Tim Ruehsen, 2014/12/16

Prev by Date: Re: [Bug-wget] HTTP gzip compression
Next by Date: Re: [Bug-wget] [patch] uuid generation in warc.c
Previous by thread: [Bug-wget] [patch] uuid generation in warc.c
Next by thread: Re: [Bug-wget] [PATCH] ftp: fix invalid pointer dereference in getftp()
Index(es):
- Date
- Thread