From eee236262005c4486e246dc77b9609ddc0fdfe09 Mon Sep 17 00:00:00 2001 From: Matthew Barnes Date: Wed, 4 Jun 2008 10:46:38 +0000 Subject: ** Fixes security vulnerabilities CVE-2008-1108 and CVE-2008-1109 2008-06-04 Matthew Barnes ** Fixes security vulnerabilities CVE-2008-1108 and CVE-2008-1109 * calendar/gui/itip-utils.c (html_new_lines_for): Do not use a fixed-size buffer for parsing external data. Simplify the logic to just split and rejoin the string with a different line separator. * calendar/gui/e-itip-control.c (write_label_piece), (write_recurrence_piece), (set_date_label): Use a GString rather than a fixed-size buffer to build the HTML string to avoid the possibility of an overflow. svn path=/trunk/; revision=35594 --- calendar/ChangeLog | 15 +++++++++++++++ 1 file changed, 15 insertions(+) (limited to 'calendar/ChangeLog') diff --git a/calendar/ChangeLog b/calendar/ChangeLog index b767e3bf9a..6fd1593859 100644 --- a/calendar/ChangeLog +++ b/calendar/ChangeLog @@ -1,3 +1,18 @@ +2008-06-04 Matthew Barnes + + ** Fixes security vulnerabilities + CVE-2008-1108 and CVE-2008-1109 + + * gui/itip-utils.c (html_new_lines_for): + Do not use a fixed-size buffer for parsing external data. + Simplify the logic to just split and rejoin the string with a + different line separator. + + * gui/e-itip-control.c (write_label_piece), (write_recurrence_piece), + (set_date_label): + Use a GString rather than a fixed-size buffer to build the HTML + string to avoid the possibility of an overflow. + 2008-06-04 Shuai Liu ** Fix for bug #535204 -- cgit v1.2.3