diff options
author | usa <usa@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2010-07-02 14:31:26 +0000 |
---|---|---|
committer | usa <usa@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2010-07-02 14:31:26 +0000 |
commit | 09ee12bb20f037233228ae546dc352b0a669cc23 (patch) | |
tree | 5ea9ba4d541e4b6f40312476f11bb14b852fba39 /ChangeLog | |
parent | 8f4c474bd374010dac656c0a6eff7157edd87252 (diff) |
* io.c (argf_inplace_mode_set): prohibits an assignment of a tainted
value.
* file.c (ruby_find_basename, ruby_find_extname): split from
rb_file_s_basename() and rb_file_s_extname().
* util.c (ruby_add_suffix): support arbitrary length of the suffix
to get rid of the potential buffer overflow.
reported by tarui.
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@28525 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 12 |
1 files changed, 12 insertions, 0 deletions
@@ -1,3 +1,15 @@ +Fri Jul 2 23:30:23 2010 NAKAMURA Usaku <usa@ruby-lang.org> + + * io.c (argf_inplace_mode_set): prohibits an assignment of a tainted + value. + + * file.c (ruby_find_basename, ruby_find_extname): split from + rb_file_s_basename() and rb_file_s_extname(). + + * util.c (ruby_add_suffix): support arbitrary length of the suffix + to get rid of the potential buffer overflow. + reported by tarui. + Fri Jul 2 05:31:51 2010 Tanaka Akira <akr@fsij.org> * numeric.c (rb_num2long): accept LONG_MAX < x < LONG_MAX+1 and |