diff options
-rw-r--r-- | ChangeLog | 5 | ||||
-rw-r--r-- | io.c | 2 |
2 files changed, 7 insertions, 0 deletions
@@ -1,3 +1,8 @@ +Tue Feb 13 02:21:12 2007 Sam Roberts <sroberts@uniserve.com> + + * io.c (rb_f_syscall): Fix buffer overflow with syscall + arguments. [ruby-bugs:PR#8541] + Sun Feb 11 07:46:45 2007 Akinori MUSHA <knu@iDaemons.org> * lib/cgi.rb (CGI::QueryExtension::read_multipart): Properly parse @@ -5046,6 +5046,8 @@ rb_f_syscall(argc, argv) rb_secure(2); if (argc == 0) rb_raise(rb_eArgError, "too few arguments for syscall"); + if (argc > sizeof(arg) / sizeof(arg[0])) + rb_raise(rb_eArgError, "too many arguments for syscall"); arg[0] = NUM2LONG(argv[0]); argv++; while (items--) { VALUE v = rb_check_string_type(*argv); |