From 09ee12bb20f037233228ae546dc352b0a669cc23 Mon Sep 17 00:00:00 2001
From: usa <usa@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>
Date: Fri, 2 Jul 2010 14:31:26 +0000
Subject: * io.c (argf_inplace_mode_set): prohibits an assignment of a tainted 
  value.

* file.c (ruby_find_basename, ruby_find_extname): split from
  rb_file_s_basename() and rb_file_s_extname().

* util.c (ruby_add_suffix): support arbitrary length of the suffix
  to get rid of the potential buffer overflow.
  reported by tarui.


git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@28525 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
---
 ChangeLog | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'ChangeLog')

diff --git a/ChangeLog b/ChangeLog
index 32ae9278fc..013433f9e7 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,15 @@
+Fri Jul  2 23:30:23 2010  NAKAMURA Usaku  <usa@ruby-lang.org>
+
+	* io.c (argf_inplace_mode_set): prohibits an assignment of a tainted
+	  value.
+
+	* file.c (ruby_find_basename, ruby_find_extname): split from
+	  rb_file_s_basename() and rb_file_s_extname().
+
+	* util.c (ruby_add_suffix): support arbitrary length of the suffix
+	  to get rid of the potential buffer overflow.
+	  reported by tarui.
+
 Fri Jul  2 05:31:51 2010  Tanaka Akira  <akr@fsij.org>
 
 	* numeric.c (rb_num2long): accept LONG_MAX < x < LONG_MAX+1 and
-- 
cgit v1.2.3