Tree
- Tree:
999e97db48cab0e960c8e720dc11b3acf3d0c718
- Date:
- Message:
- fspread: fix buffer overflow Without this fix, fspread is trusting the server to return as much data as requested, or less. If a server responds with more data though, fspread writes beyond the bounds of the buffer to fill, which is passed in by the caller. It depends on the caller of fspread() where that buffer is, so there are various possible attack vectors. In the Plan9 kernel, I found this implemented in devmnt.c, where overly large responses are truncated to the size requested before copying, so I assume that this strategy works here too. This also affects fsread() and fsreadn(), which are based on fspread().
README
These fonts are converted from NAGA10 font collection distributed under public domain license. There are 10 dot japanese fonts with several type faces (gothic, bold, mincho, maru). The original distribution site is: http://hp.vector.co.jp/authors/VA013391/fonts/ http://hp.vector.co.jp/authors/VA013391/fonts/knj10-1.1.tar.gz The conversion was done by the TIP9UG JP FONTS project. http://www.tip9ug.jp/en/projects.html Font Description: 5x10a.font 5x10 ASCII (backslash, tilder) 5x10B.font " bold 5x10rk.font 10x10 Roman (yen, upper score) knj10.font 10x10 JIS gothic knj10B.font " bold maru10.font 10x10 JIS marumoji min10.font 10x10 JIS mincho --